Dependency-Check Report

Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

Project: dependency-plugin-tracker

Scan Information (show all):

Display: Showing Vulnerable Dependencies

Dependency CPE GAV Highest Severity CVE Count CPE Confidence Evidence Count
tools.jar   0 6
antlr-2.7.7.jar antlr:antlr:2.7.7   0 12
aopalliance-1.0.jar aopalliance:aopalliance:1.0   0 10
asm-3.3.1.jar asm:asm:3.3.1   0 10
backport-util-concurrent-3.1.jar backport-util-concurrent:backport-util-concurrent:3.1   0 12
ganymed-ssh2-build210.jar ch.ethz.ganymed:ganymed-ssh2:build210   0 10
classworlds-1.1.jar classworlds:classworlds:1.1   0 15
jcommander-1.35.jar com.beust:jcommander:1.35   0 15
jackson-annotations-2.4.2.jar com.fasterxml.jackson.core:jackson-annotations:2.4.2   0 22
jackson-core-2.4.2.jar com.fasterxml.jackson.core:jackson-core:2.4.2   0 24
jackson-databind-2.2.3.jar com.fasterxml.jackson.core:jackson-databind:2.2.3   0 12
github-maven-core-0.11.jar com.github.github:github-maven-core:0.11   0 15
site-maven-plugin-0.11.jar com.github.github:site-maven-plugin:0.11   0 15
annotations-3.0.0.jar com.google.code.findbugs:annotations:3.0.0   0 13
bcel-findbugs-6.0.jar com.google.code.findbugs:bcel-findbugs:6.0   0 25
findbugs-3.0.0.jar com.google.code.findbugs:findbugs:3.0.0   0 11
jFormatString-3.0.0.jar com.google.code.findbugs:jFormatString:3.0.0   0 11
jsr305-2.0.3.jar com.google.code.findbugs:jsr305:2.0.3   0 9
gson-2.2.2.jar com.google.code.gson:gson:2.2.2   0 16
maven-scm-provider-svnjava-1.13.jar com.google.code.maven-scm-provider-svnjava:maven-scm-provider-svnjava:1.13   0 17
guava-jdk5-14.0.1.jar com.google.guava:guava-jdk5:14.0.1   0 16
guava-15.0.jar com.google.guava:guava:15.0   0 16
htmlcompressor-1.5.2.jar com.googlecode.htmlcompressor:htmlcompressor:1.5.2   0 13
JavaEWAH-0.7.9.jar com.googlecode.javaewah:JavaEWAH:0.7.9   0 15
maven-java-formatter-plugin-0.4.jar com.googlecode.maven-java-formatter-plugin:maven-java-formatter-plugin:0.4   0 11
annotations-9.0.4.jar com.intellij:annotations:9.0.4   0 10
jsch.agentproxy.connector-factory-0.0.6.jar com.jcraft:jsch.agentproxy.connector-factory:0.0.6   0 15
jsch.agentproxy.core-0.0.6.jar com.jcraft:jsch.agentproxy.core:0.0.6   0 14
jsch.agentproxy.jsch-0.0.6.jar com.jcraft:jsch.agentproxy.jsch:0.0.6   0 10
jsch.agentproxy.pageant-0.0.6.jar com.jcraft:jsch.agentproxy.pageant:0.0.6   0 15
jsch.agentproxy.sshagent-0.0.6.jar com.jcraft:jsch.agentproxy.sshagent:0.0.6   0 15
jsch.agentproxy.usocket-jna-0.0.6.jar com.jcraft:jsch.agentproxy.usocket-jna:0.0.6   0 15
jsch.agentproxy.usocket-nc-0.0.6.jar com.jcraft:jsch.agentproxy.usocket-nc:0.0.6   0 15
jsch-0.1.50.jar com.jcraft:jsch:0.1.50   0 13
mksapi-jar-4.10.9049.jar com.mks.api:mksapi-jar:4.10.9049   0 9
license-maven-plugin-2.7.jar com.mycila:license-maven-plugin:2.7   0 12
mycila-xmltool-4.2.ga.jar cpe:/a:springsource:spring_framework:4.2
cpe:/a:vmware:springsource_spring_framework:4.2
com.mycila:mycila-xmltool:4.2.ga   0 LOW 17
checkstyle-5.7.jar com.puppycrawl.tools:checkstyle:5.7   0 16
qdox-1.12.1.jar com.thoughtworks.qdox:qdox:1.12.1   0 14
xstream-1.4.4.jar com.thoughtworks.xstream:xstream:1.4.4   0 10
htmlcompressor-maven-plugin-1.3.jar com.tunyk.mvn.plugins.htmlcompressor:htmlcompressor-maven-plugin:1.3   0 14
yuicompressor-2.4.6.jar com.yahoo.platform.yui:yuicompressor:2.4.6   0 13
commons-beanutils-core-1.8.3.jar commons-beanutils:commons-beanutils-core:1.8.3   0 16
commons-beanutils-1.7.0.jar commons-beanutils:commons-beanutils:1.7.0   0 13
commons-chain-1.1.jar commons-chain:commons-chain:1.1   0 18
commons-cli-1.2.jar commons-cli:commons-cli:1.2   0 21
commons-codec-1.6.jar commons-codec:commons-codec:1.6   0 25
commons-collections-3.2.1.jar commons-collections:commons-collections:3.2.1   0 22
commons-digester-2.0.jar commons-digester:commons-digester:2.0   0 23
commons-httpclient-3.0.jar cpe:/a:apache:commons-httpclient:3.0
cpe:/a:apache:httpclient:3.0
commons-httpclient:commons-httpclient:3.0 Medium 3 HIGHEST 15
commons-io-2.2.jar commons-io:commons-io:2.2   0 23
commons-lang-2.6.jar commons-lang:commons-lang:2.6   0 21
commons-logging-1.1.1.jar commons-logging:commons-logging:1.1.1   0 19
commons-validator-1.4.0.jar commons-validator:commons-validator:1.4.0   0 22
dom4j-1.6.1.jar dom4j:dom4j:1.6.1   0 15
jakarta-regexp-1.4.jar jakarta-regexp:jakarta-regexp:1.4   0 8
javax.annotation-api-1.2.jar cpe:/a:vmware:springsource_spring_framework:1.2 javax.annotation:javax.annotation-api:1.2   0 LOW 19
jsr250-api-1.0.jar javax.annotation:jsr250-api:1.0   0 9
cdi-api-1.0.jar javax.enterprise:cdi-api:1.0   0 18
javax.inject-1.jar javax.inject:javax.inject:1   0 9
jsp-api-2.1.jar javax.servlet.jsp:jsp-api:2.1   0 13
servlet-api-2.5.jar javax.servlet:servlet-api:2.5   0 12
jaxen-1.1.4.jar jaxen:jaxen:1.1.4   0 12
jdepend-2.9.1.jar jdepend:jdepend:2.9.1   0 6
plastic-1.2.0.jar jgoodies:plastic:1.2.0   0 8
jline-0.9.94.jar jline:jline:0.9.94   0 9
jline-0.9.94.jar: jline32.dll   0 1
jline-0.9.94.jar: jline64.dll   0 1
joda-time-2.0.jar joda-time:joda-time:2.0   0 20
log4j-1.2.14.jar log4j:log4j:1.2.14   0 10
yuicompressor-maven-plugin-1.5.1.jar net.alchim31.maven:yuicompressor-maven-plugin:1.5.1   0 10
javacc-5.0.jar net.java.dev.javacc:javacc:5.0   0 11
jna-3.2.2.jar net.java.dev.jna:jna:3.2.2   0 10
jna-3.2.2.jar: jnidispatch.dll   0 1
jna-3.2.2.jar: jnidispatch.dll   0 1
platform-3.4.0.jar net.java.dev.jna:platform:3.4.0   0 12
pmd-core-5.2.1.jar net.sourceforge.pmd:pmd-core:5.2.1   0 10
pmd-java-5.2.1.jar net.sourceforge.pmd:pmd-java:5.2.1   0 11
pmd-javascript-5.2.1.jar net.sourceforge.pmd:pmd-javascript:5.2.1   0 11
pmd-jsp-5.2.1.jar net.sourceforge.pmd:pmd-jsp:5.2.1   0 11
saxon-9.1.0.8.jar cpe:/a:saxon:saxon:9.1.0.8 net.sourceforge.saxon:saxon:9.1.0.8   0 LOW 12
jaxws-maven-plugin-2.3.8.jar net.trajano.mojo:jaxws-maven-plugin:2.3.8   0 12
antlr-runtime-3.1.3.jar org.antlr:antlr-runtime:3.1.3   0 10
stringtemplate-3.2.jar org.antlr:stringtemplate:3.2   0 9
ant-launcher-1.9.4.jar org.apache.ant:ant-launcher:1.9.4   0 11
ant-1.9.4.jar org.apache.ant:ant:1.9.4   0 10
bcel-5.2.jar org.apache.bcel:bcel:5.2   0 13
commons-compress-1.4.1.jar cpe:/a:apache:commons-compress:1.4.1 org.apache.commons:commons-compress:1.4.1   0 LOW 15
commons-lang3-3.3.2.jar org.apache.commons:commons-lang3:3.3.2   0 21
httpclient-4.3.5.jar cpe:/a:apache:httpclient:4.3.5 org.apache.httpcomponents:httpclient:4.3.5   0 LOW 14
httpcore-4.3.2.jar org.apache.httpcomponents:httpcore:4.3.2   0 18
httpmime-4.3.5.jar org.apache.httpcomponents:httpmime:4.3.5   0 18
jackrabbit-webdav-1.5.0.jar cpe:/a:apache:jackrabbit:1.5.0 org.apache.jackrabbit:jackrabbit-webdav:1.5.0 Medium 1 HIGHEST 11
doxia-core-1.6.jar org.apache.maven.doxia:doxia-core:1.6   0 13
doxia-decoration-model-1.1.4.jar org.apache.maven.doxia:doxia-decoration-model:1.1.4   0 14
doxia-integration-tools-1.6.jar org.apache.maven.doxia:doxia-integration-tools:1.6   0 15
doxia-logging-api-1.6.jar org.apache.maven.doxia:doxia-logging-api:1.6   0 14
doxia-module-apt-1.6.jar org.apache.maven.doxia:doxia-module-apt:1.6   0 14
doxia-module-fml-1.6.jar org.apache.maven.doxia:doxia-module-fml:1.6   0 14
doxia-module-markdown-1.6.jar org.apache.maven.doxia:doxia-module-markdown:1.6   0 14
doxia-module-xdoc-1.6.jar org.apache.maven.doxia:doxia-module-xdoc:1.6   0 14
doxia-module-xhtml-1.6.jar org.apache.maven.doxia:doxia-module-xhtml:1.6   0 14
doxia-sink-api-1.1.4.jar org.apache.maven.doxia:doxia-sink-api:1.1.4   0 14
doxia-site-renderer-1.1.4.jar org.apache.maven.doxia:doxia-site-renderer:1.1.4   0 13
enforcer-api-1.3.1.jar org.apache.maven.enforcer:enforcer-api:1.3.1   0 14
enforcer-rules-1.3.1.jar org.apache.maven.enforcer:enforcer-rules:1.3.1   0 13
maven-archiver-2.5.jar org.apache.maven:maven-archiver:2.5   0 14
maven-artifact-manager-2.2.1.jar org.apache.maven:maven-artifact-manager:2.2.1   0 14
maven-artifact-2.2.1.jar org.apache.maven:maven-artifact:2.2.1   0 13
maven-compat-2.2.1.jar org.apache.maven:maven-compat:2.2.1   0 13
maven-core-2.2.1.jar cpe:/a:apache:maven:2.2.1 org.apache.maven:maven-core:2.2.1   0 LOW 12
maven-error-diagnostics-2.2.1.jar org.apache.maven:maven-error-diagnostics:2.2.1   0 13
maven-jxr-2.5.jar org.apache.maven:maven-jxr:2.5   0 13
maven-model-2.2.1.jar org.apache.maven:maven-model:2.2.1   0 14
maven-monitor-2.2.1.jar org.apache.maven:maven-monitor:2.2.1   0 13
maven-plugin-api-3.1.0.jar org.apache.maven:maven-plugin-api:3.1.0   0 14
maven-plugin-descriptor-2.2.1.jar org.apache.maven:maven-plugin-descriptor:2.2.1   0 14
maven-plugin-parameter-documenter-2.2.1.jar org.apache.maven:maven-plugin-parameter-documenter:2.2.1   0 13
maven-profile-2.2.1.jar org.apache.maven:maven-profile:2.2.1   0 14
maven-project-builder-3.0-alpha-2.jar org.apache.maven:maven-project-builder:3.0-alpha-2   0 14
maven-project-3.0-alpha-2.jar org.apache.maven:maven-project:3.0-alpha-2   0 14
maven-repository-metadata-2.2.1.jar org.apache.maven:maven-repository-metadata:2.2.1   0 13
maven-settings-builder-3.0.jar org.apache.maven:maven-settings-builder:3.0   0 14
maven-settings-2.2.1.jar org.apache.maven:maven-settings:2.2.1   0 14
maven-toolchain-1.0.jar org.apache.maven:maven-toolchain:1.0   0 12
maven-plugin-annotations-3.3.jar org.apache.maven.plugin-tools:maven-plugin-annotations:3.3   0 13
maven-antrun-plugin-1.8.jar org.apache.maven.plugins:maven-antrun-plugin:1.8   0 16
maven-assembly-plugin-2.5.3.jar org.apache.maven.plugins:maven-assembly-plugin:2.5.3   0 15
maven-changelog-plugin-2.3.jar org.apache.maven.plugins:maven-changelog-plugin:2.3   0 15
maven-checkstyle-plugin-2.13.jar org.apache.maven.plugins:maven-checkstyle-plugin:2.13   0 15
maven-clean-plugin-2.6.1.jar org.apache.maven.plugins:maven-clean-plugin:2.6.1   0 15
maven-compiler-plugin-3.2.jar org.apache.maven.plugins:maven-compiler-plugin:3.2   0 15
maven-dependency-plugin-2.9.jar org.apache.maven.plugins:maven-dependency-plugin:2.9   0 15
maven-deploy-plugin-2.8.2.jar org.apache.maven.plugins:maven-deploy-plugin:2.8.2   0 15
maven-enforcer-plugin-1.3.1.jar org.apache.maven.plugins:maven-enforcer-plugin:1.3.1   0 14
maven-gpg-plugin-1.6.jar org.apache.maven.plugins:maven-gpg-plugin:1.6   0 15
maven-install-plugin-2.5.2.jar org.apache.maven.plugins:maven-install-plugin:2.5.2   0 15
maven-jar-plugin-2.5.jar org.apache.maven.plugins:maven-jar-plugin:2.5   0 15
maven-javadoc-plugin-2.10.1.jar org.apache.maven.plugins:maven-javadoc-plugin:2.10.1   0 15
maven-jxr-plugin-2.5.jar org.apache.maven.plugins:maven-jxr-plugin:2.5   0 14
maven-pmd-plugin-3.3.jar org.apache.maven.plugins:maven-pmd-plugin:3.3   0 15
maven-project-info-reports-plugin-2.8.jar org.apache.maven.plugins:maven-project-info-reports-plugin:2.8   0 14
maven-release-plugin-2.5.1.jar org.apache.maven.plugins:maven-release-plugin:2.5.1   0 14
maven-resources-plugin-2.7.jar org.apache.maven.plugins:maven-resources-plugin:2.7   0 15
maven-scm-plugin-1.9.2.jar org.apache.maven.plugins:maven-scm-plugin:1.9.2   0 14
maven-site-plugin-3.4.jar org.apache.maven.plugins:maven-site-plugin:3.4   0 15
maven-source-plugin-2.4.jar org.apache.maven.plugins:maven-source-plugin:2.4   0 15
maven-surefire-plugin-2.18.1.jar org.apache.maven.plugins:maven-surefire-plugin:2.18.1   0 14
maven-surefire-report-plugin-2.18.1.jar org.apache.maven.plugins:maven-surefire-report-plugin:2.18.1   0 14
maven-war-plugin-2.6.jar org.apache.maven.plugins:maven-war-plugin:2.6   0 15
maven-release-api-2.5.1.jar org.apache.maven.release:maven-release-api:2.5.1   0 13
maven-release-manager-2.5.1.jar org.apache.maven.release:maven-release-manager:2.5.1   0 13
maven-reporting-api-3.0.jar org.apache.maven.reporting:maven-reporting-api:3.0   0 14
maven-reporting-exec-1.2.jar org.apache.maven.reporting:maven-reporting-exec:1.2   0 15
maven-reporting-impl-2.2.jar org.apache.maven.reporting:maven-reporting-impl:2.2   0 14
maven-scm-api-1.8.jar org.apache.maven.scm:maven-scm-api:1.8   0 13
maven-scm-manager-plexus-1.8.jar org.apache.maven.scm:maven-scm-manager-plexus:1.8   0 14
maven-scm-provider-accurev-1.9.2.jar org.apache.maven.scm:maven-scm-provider-accurev:1.9.2   0 14
maven-scm-provider-bazaar-1.8.jar org.apache.maven.scm:maven-scm-provider-bazaar:1.8   0 14
maven-scm-provider-clearcase-1.8.jar org.apache.maven.scm:maven-scm-provider-clearcase:1.8   0 15
maven-scm-provider-cvs-commons-1.9.2.jar org.apache.maven.scm:maven-scm-provider-cvs-commons:1.9.2   0 15
maven-scm-provider-cvsexe-1.8.jar org.apache.maven.scm:maven-scm-provider-cvsexe:1.8   0 14
maven-scm-provider-cvsjava-1.8.jar org.apache.maven.scm:maven-scm-provider-cvsjava:1.8   0 14
maven-scm-provider-git-commons-1.9.2.jar org.apache.maven.scm:maven-scm-provider-git-commons:1.9.2   0 15
maven-scm-provider-gitexe-1.8.jar org.apache.maven.scm:maven-scm-provider-gitexe:1.8   0 14
maven-scm-provider-hg-1.8.jar org.apache.maven.scm:maven-scm-provider-hg:1.8   0 14
maven-scm-provider-integrity-1.9.2.jar org.apache.maven.scm:maven-scm-provider-integrity:1.9.2   0 14
maven-scm-provider-jazz-1.8.jar org.apache.maven.scm:maven-scm-provider-jazz:1.8   0 14
maven-scm-provider-local-1.8.jar org.apache.maven.scm:maven-scm-provider-local:1.8   0 14
maven-scm-provider-perforce-1.8.jar org.apache.maven.scm:maven-scm-provider-perforce:1.8   0 14
maven-scm-provider-starteam-1.8.jar org.apache.maven.scm:maven-scm-provider-starteam:1.8   0 15
maven-scm-provider-svn-commons-1.8.jar org.apache.maven.scm:maven-scm-provider-svn-commons:1.8   0 15
maven-scm-provider-svnexe-1.8.jar org.apache.maven.scm:maven-scm-provider-svnexe:1.8   0 14
maven-scm-provider-synergy-1.8.jar org.apache.maven.scm:maven-scm-provider-synergy:1.8   0 14
maven-scm-provider-tfs-1.9.2.jar org.apache.maven.scm:maven-scm-provider-tfs:1.9.2   0 14
maven-scm-provider-vss-1.8.jar org.apache.maven.scm:maven-scm-provider-vss:1.8   0 15
file-management-1.1.jar org.apache.maven.shared:file-management:1.1   0 12
maven-common-artifact-filters-1.4.jar org.apache.maven.shared:maven-common-artifact-filters:1.4   0 15
maven-dependency-analyzer-1.5.jar org.apache.maven.shared:maven-dependency-analyzer:1.5   0 15
maven-dependency-tree-2.2.jar org.apache.maven.shared:maven-dependency-tree:2.2   0 15
maven-doxia-tools-1.2.1.jar org.apache.maven.shared:maven-doxia-tools:1.2.1   0 15
maven-filtering-1.3.jar org.apache.maven.shared:maven-filtering:1.3   0 15
maven-invoker-2.1.1.jar org.apache.maven.shared:maven-invoker:2.1.1   0 15
maven-mapping-1.0.jar org.apache.maven.shared:maven-mapping:1.0   0 15
maven-repository-builder-1.0.jar org.apache.maven.shared:maven-repository-builder:1.0   0 15
maven-shared-incremental-1.1.jar org.apache.maven.shared:maven-shared-incremental:1.1   0 15
maven-shared-io-1.1.jar org.apache.maven.shared:maven-shared-io:1.1   0 15
maven-shared-jar-1.1.jar org.apache.maven.shared:maven-shared-jar:1.1   0 15
maven-shared-utils-0.7.jar org.apache.maven.shared:maven-shared-utils:0.7   0 14
maven-surefire-common-2.18.1.jar org.apache.maven.surefire:maven-surefire-common:2.18.1   0 13
maven-surefire-common-2.18.1.jar\META-INF/maven/org.apache.maven.shared/maven-common-artifact-filters/pom.xml org.apache.maven.shared:maven-common-artifact-filters:1.3   0 4
maven-surefire-common-2.18.1.jar\META-INF/maven/org.apache.maven.shared/maven-shared-utils/pom.xml org.apache.maven.shared:maven-shared-utils:0.4   0 4
surefire-api-2.18.1.jar org.apache.maven.surefire:surefire-api:2.18.1   0 18
surefire-booter-2.18.1.jar org.apache.maven.surefire:surefire-booter:2.18.1   0 14
surefire-report-parser-2.18.1.jar org.apache.maven.surefire:surefire-report-parser:2.18.1   0 19
wagon-file-2.7.jar org.apache.maven.wagon:wagon-file:2.7   0 14
wagon-http-lightweight-2.7.jar org.apache.maven.wagon:wagon-http-lightweight:2.7   0 14
wagon-http-shared-2.7.jar org.apache.maven.wagon:wagon-http-shared:2.7   0 14
wagon-http-1.0-beta-6.jar org.apache.maven.wagon:wagon-http:1.0-beta-6   0 14
wagon-provider-api-1.0-beta-6.jar org.apache.maven.wagon:wagon-provider-api:1.0-beta-6   0 13
wagon-ssh-common-2.7.jar org.apache.maven.wagon:wagon-ssh-common:2.7   0 14
wagon-ssh-external-1.0-beta-6.jar org.apache.maven.wagon:wagon-ssh-external:1.0-beta-6   0 14
wagon-ssh-2.7.jar org.apache.maven.wagon:wagon-ssh:2.7   0 14
wagon-webdav-jackrabbit-1.0-beta-6.jar cpe:/a:apache:jackrabbit:1.0.beta org.apache.maven.wagon:wagon-webdav-jackrabbit:1.0-beta-6   0 LOW 16
struts-core-1.3.8.jar cpe:/a:apache:struts:1.3.8 org.apache.struts:struts-core:1.3.8 High 2 HIGHEST 12
struts-tiles-1.3.8.jar cpe:/a:apache:struts:1.3.8
cpe:/a:apache:tiles:1.3.8
org.apache.struts:struts-tiles:1.3.8 High 2 HIGHEST 13
tomcat-embed-core-7.0.47.jar cpe:/a:apache:tomcat:7.0.47
cpe:/a:apache_tomcat:apache_tomcat:7.0.47
org.apache.tomcat.embed:tomcat-embed-core:7.0.47 High 10 HIGHEST 13
tomcat-embed-logging-log4j-7.0.47.jar cpe:/a:apache_tomcat:apache_tomcat:7.0.47 org.apache.tomcat.embed:tomcat-embed-logging-log4j:7.0.47   0 LOW 14
common-tomcat-maven-plugin-2.2.jar cpe:/a:apache:tomcat:2.2
cpe:/a:apache_tomcat:apache_tomcat:2.2
org.apache.tomcat.maven:common-tomcat-maven-plugin:2.2 High 22 LOW 14
tomcat7-war-runner-2.2.jar cpe:/a:apache:tomcat:2.2
cpe:/a:apache_tomcat:apache_tomcat:2.2
org.apache.tomcat.maven:tomcat7-war-runner:2.2 High 22 LOW 14
tomcat-el-api-7.0.47.jar cpe:/a:apache:tomcat:7.0.47 org.apache.tomcat:tomcat-el-api:7.0.47 High 10 HIGHEST 10
velocity-tools-2.0.jar org.apache.velocity:velocity-tools:2.0   0 13
velocity-1.5.jar org.apache.velocity:velocity:1.5   0 19
bsh-2.0b4.jar org.beanshell:bsh:2.0b4   0 13
gmaven-feature-api-1.4.jar org.codehaus.gmaven.feature:gmaven-feature-api:1.4   0 11
gmaven-feature-support-1.4.jar org.codehaus.gmaven.feature:gmaven-feature-support:1.4   0 12
gmaven-mojo-1.4.jar org.codehaus.gmaven:gmaven-mojo:1.4   0 12
gmaven-plugin-1.4.jar org.codehaus.gmaven:gmaven-plugin:1.4   0 11
gmaven-runtime-1.5-1.4.jar org.codehaus.gmaven.runtime:gmaven-runtime-1.5:1.4   0 12
gmaven-runtime-api-1.4.jar org.codehaus.gmaven.runtime:gmaven-runtime-api:1.4   0 11
gmaven-runtime-loader-1.4.jar org.codehaus.gmaven.runtime:gmaven-runtime-loader:1.4   0 12
gmaven-runtime-support-1.4.jar org.codehaus.gmaven.runtime:gmaven-runtime-support:1.4   0 12
groovy-all-minimal-1.5.8.jar org.codehaus.groovy:groovy-all-minimal:1.5.8   0 23
groovy-all-1.7.4.jar org.codehaus.groovy:groovy-all:1.7.4   0 28
animal-sniffer-maven-plugin-1.13.jar org.codehaus.mojo:animal-sniffer-maven-plugin:1.13   0 12
animal-sniffer-1.13.jar org.codehaus.mojo:animal-sniffer:1.13   0 11
build-helper-maven-plugin-1.9.1.jar org.codehaus.mojo:build-helper-maven-plugin:1.9.1   0 11
buildnumber-maven-plugin-1.3.jar org.codehaus.mojo:buildnumber-maven-plugin:1.3   0 11
findbugs-maven-plugin-3.0.0.jar org.codehaus.mojo:findbugs-maven-plugin:3.0.0   0 11
java-boot-classpath-detector-1.13.jar org.codehaus.mojo:java-boot-classpath-detector:1.13   0 12
jdepend-maven-plugin-2.0.jar org.codehaus.mojo:jdepend-maven-plugin:2.0   0 11
sonar-maven-plugin-2.5.jar org.codehaus.mojo:sonar-maven-plugin:2.5   0 12
taglist-maven-plugin-2.4.jar org.codehaus.mojo:taglist-maven-plugin:2.4   0 11
tidy-maven-plugin-1.0-alpha-2.jar org.codehaus.mojo:tidy-maven-plugin:1.0-alpha-2   0 11
versions-maven-plugin-2.1.jar org.codehaus.mojo:versions-maven-plugin:2.1   0 11
wagon-maven-plugin-1.0.jar org.codehaus.mojo:wagon-maven-plugin:1.0   0 11
plexus-archiver-2.9.1.jar org.codehaus.plexus:plexus-archiver:2.9.1   0 10
plexus-classworlds-2.2.2.jar org.codehaus.plexus:plexus-classworlds:2.2.2   0 12
plexus-compiler-api-2.4.jar org.codehaus.plexus:plexus-compiler-api:2.4   0 11
plexus-compiler-javac-2.4.jar org.codehaus.plexus:plexus-compiler-javac:2.4   0 12
plexus-compiler-manager-2.4.jar org.codehaus.plexus:plexus-compiler-manager:2.4   0 11
plexus-component-annotations-1.5.5.jar org.codehaus.plexus:plexus-component-annotations:1.5.5   0 12
plexus-container-default-1.0-alpha-9.jar org.codehaus.plexus:plexus-container-default:1.0-alpha-9   0 14
plexus-digest-1.0.jar org.codehaus.plexus:plexus-digest:1.0   0 10
plexus-i18n-1.0-beta-7.jar org.codehaus.plexus:plexus-i18n:1.0-beta-7   0 10
plexus-interactivity-api-1.0-alpha-4.jar org.codehaus.plexus:plexus-interactivity-api:1.0-alpha-4   0 14
plexus-interpolation-1.22.jar org.codehaus.plexus:plexus-interpolation:1.22   0 10
plexus-io-2.4.1.jar org.codehaus.plexus:plexus-io:2.4.1   0 11
plexus-resources-1.0-alpha-7.jar org.codehaus.plexus:plexus-resources:1.0-alpha-7   0 12
plexus-utils-3.0.1.jar org.codehaus.plexus:plexus-utils:3.0.1   0 13
plexus-velocity-1.1.8.jar org.codehaus.plexus:plexus-velocity:1.1.8   0 10
sonar-runner-api-2.4.jar org.codehaus.sonar.runner:sonar-runner-api:2.4   0 15
sonar-runner-api-2.4.jar\META-INF/maven/com.github.kevinsawicki/http-request/pom.xml com.github.kevinsawicki:http-request:4.1   0 5
sonar-runner-api-2.4.jar\META-INF/maven/commons-io/commons-io/pom.xml commons-io:commons-io:2.0.1   0 8
sonar-runner-api-2.4.jar\META-INF/maven/org.codehaus.sonar/sonar-home/pom.xml org.codehaus.sonar:sonar-home:3.5   0 5
sonar-runner-api-2.4.jar: sonar-runner-batch.jar org.codehaus.sonar.runner:sonar-runner-batch:2.4   0 12
sonar-runner-api-2.4.jar: sonar-runner-impl.jar org.codehaus.sonar.runner:sonar-runner-impl:2.4   0 7
wstx-asl-3.2.7.jar org.codehaus.woodstox:wstx-asl:3.2.7   0 19
aether-util-0.9.0.M2.jar org.eclipse.aether:aether-util:0.9.0.M2   0 16
ecj-4.2.2.jar org.eclipse.jdt.core.compiler:ecj:4.2.2   0 14
org.eclipse.jgit-3.4.1.201406201815-r.jar cpe:/a:git:git:3.4.1.201406 org.eclipse.jgit:org.eclipse.jgit:3.4.1.201406201815-r High 1 LOW 17
org.eclipse.sisu.inject-0.0.0.M2a.jar org.eclipse.sisu:org.eclipse.sisu.inject:0.0.0.M2a   0 16
org.eclipse.sisu.plexus-0.0.0.M2a.jar org.eclipse.sisu:org.eclipse.sisu.plexus:0.0.0.M2a   0 11
org.eclipse.jdt.core-3.8.1.v20120125-1544.jar org.eclipse.tycho:org.eclipse.jdt.core:3.8.1.v20120125-1544   0 16
org.eclipse.jdt.core-3.8.1.v20120125-1544.jar: jdtCompilerAdapter.jar   0 8
coveralls-maven-plugin-3.0.1.jar org.eluder.coveralls:coveralls-maven-plugin:3.0.1   0 16
webservices-api-2.3.1-b411.jar org.glassfish.metro:webservices-api:2.3.1-b411   0 12
webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.bind/jaxb-api/pom.xml javax.xml.bind:jaxb-api:2.2.12-b140109.1041   0 7
webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.soap/javax.xml.soap-api/pom.xml javax.xml.soap:javax.xml.soap-api:1.3.7   0 7
webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.ws/jaxws-api/pom.xml javax.xml.ws:jaxws-api:2.2.11   0 6
webservices-rt-2.3.1-b411.jar org.glassfish.metro:webservices-rt:2.3.1-b411   0 21
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.istack/istack-commons-runtime/pom.xml com.sun.istack:istack-commons-runtime:2.19   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-core/pom.xml com.sun.xml.bind:jaxb-core:2.2.10-b140310.1920   0 6
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-impl/pom.xml com.sun.xml.bind:jaxb-impl:2.2.10-b140310.1920   0 6
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.fastinfoset/FastInfoset/pom.xml com.sun.xml.fastinfoset:FastInfoset:1.2.13   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.messaging.saaj/saaj-impl/pom.xml com.sun.xml.messaging.saaj:saaj-impl:1.3.23   0 7
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.stream.buffer/streambuffer/pom.xml com.sun.xml.stream.buffer:streambuffer:1.5.3   0 6
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/httpspi-servlet/pom.xml com.sun.xml.ws:httpspi-servlet:2.2.10-b140319.1121   0 5
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/policy/pom.xml com.sun.xml.ws:policy:2.4   0 7
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt-fi/pom.xml com.sun.xml.ws:rt-fi:2.2.10-b140319.1121   0 5
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt-ha/pom.xml com.sun.xml.ws:rt-ha:2.2.10-b140319.1121   0 5
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt/pom.xml com.sun.xml.ws:rt:2.2.10-b140319.1121   0 5
webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/servlet/pom.xml com.sun.xml.ws:servlet:2.2.10-b140319.1121   0 5
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.external/management-api/pom.xml cpe:/a:oracle:glassfish:3.2.1.b001 org.glassfish.external:management-api:3.2.1-b001 Low 1 LOW 10
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.ha/ha-api/pom.xml cpe:/a:oracle:glassfish:3.1.9 org.glassfish.ha:ha-api:3.1.9 Low 1 LOW 6
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-core/pom.xml org.glassfish.jaxb:jaxb-core:2.2.10-b140310.1920   0 6
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-runtime/pom.xml org.glassfish.jaxb:jaxb-runtime:2.2.10-b140310.1920   0 6
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/txw2/pom.xml org.glassfish.jaxb:txw2:2.2.10-b140310.1920   0 6
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-cm-api/pom.xml org.glassfish.metro:metro-cm-api:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-cm-impl/pom.xml org.glassfish.metro:metro-cm-impl:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-commons/pom.xml org.glassfish.metro:metro-commons:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-config-api/pom.xml org.glassfish.metro:metro-config-api:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-config-impl/pom.xml org.glassfish.metro:metro-config-impl:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-runtime-api/pom.xml org.glassfish.metro:metro-runtime-api:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-runtime-impl/pom.xml org.glassfish.metro:metro-runtime-impl:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/soaptcp-api/pom.xml org.glassfish.metro:soaptcp-api:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/soaptcp-impl/pom.xml org.glassfish.metro:soaptcp-impl:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/ws-mex/pom.xml org.glassfish.metro:ws-mex:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsit-api/pom.xml org.glassfish.metro:wsit-api:2.3.1-b411   0 5
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsit-impl/pom.xml org.glassfish.metro:wsit-impl:2.3.1-b411   0 5
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsmc-api/pom.xml org.glassfish.metro:wsmc-api:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsmc-impl/pom.xml org.glassfish.metro:wsmc-impl:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrm-api/pom.xml org.glassfish.metro:wsrm-api:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrm-impl/pom.xml org.glassfish.metro:wsrm-impl:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrx-commons/pom.xml org.glassfish.metro:wsrx-commons:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrx-testing/pom.xml org.glassfish.metro:wsrx-testing:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wssx-api/pom.xml org.glassfish.metro:wssx-api:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wssx-impl/pom.xml org.glassfish.metro:wssx-impl:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-api/pom.xml org.glassfish.metro:wstx-api:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-core/pom.xml org.glassfish.metro:wstx-core:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-impl/pom.xml org.glassfish.metro:wstx-impl:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/xmlfilter/pom.xml org.glassfish.metro:xmlfilter:2.3.1-b411   0 4
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.jvnet.mimepull/mimepull/pom.xml org.jvnet.mimepull:mimepull:1.9.4   0 7
webservices-rt-2.3.1-b411.jar\META-INF/maven/org.jvnet.staxex/stax-ex/pom.xml org.jvnet.staxex:stax-ex:1.7.5   0 6
webservices-tools-2.3.1-b411.jar org.glassfish.metro:webservices-tools:2.3.1-b411   0 13
webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.istack/istack-commons-tools/pom.xml com.sun.istack:istack-commons-tools:2.19   0 4
webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind.external/rngom/pom.xml com.sun.xml.bind.external:rngom:2.2.10-b140310.1920   0 6
webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-jxc/pom.xml com.sun.xml.bind:jaxb-jxc:2.2.10-b140310.1920   0 6
webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-xjc/pom.xml com.sun.xml.bind:jaxb-xjc:2.2.10-b140310.1920   0 6
webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.dtd-parser/dtd-parser/pom.xml com.sun.xml.dtd-parser:dtd-parser:1.1   0 7
webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/wscompile/pom.xml com.sun.xml.ws:wscompile:2.2.10-b140319.1121   0 5
webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xsom/xsom/pom.xml com.sun.xsom:xsom:20130531   0 8
webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/codemodel/pom.xml org.glassfish.jaxb:codemodel:2.2.10-b140310.1920   0 6
webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-jxc/pom.xml org.glassfish.jaxb:jaxb-jxc:2.2.10-b140310.1920   0 6
webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-xjc/pom.xml org.glassfish.jaxb:jaxb-xjc:2.2.10-b140310.1920   0 6
hibernate-validator-annotation-processor-5.2.0.Alpha1.jar cpe:/a:hibernate:hibernate_validator:5.2.0 org.hibernate:hibernate-validator-annotation-processor:5.2.0.Alpha1   0 LOW 11
jacoco-maven-plugin-0.7.2.201409121644.jar org.jacoco:jacoco-maven-plugin:0.7.2.201409121644   0 10
org.jacoco.agent-0.7.2.201409121644-runtime.jar org.jacoco:org.jacoco.agent:0.7.2.201409121644   0 11
org.jacoco.agent-0.7.2.201409121644-runtime.jar\META-INF/maven/org.jacoco/org.jacoco.agent.rt/pom.xml org.jacoco:org.jacoco.agent.rt:0.7.2.201409121644   0 5
org.jacoco.core-0.7.2.201409121644.jar org.jacoco:org.jacoco.core:0.7.2.201409121644   0 15
org.jacoco.report-0.7.2.201409121644.jar org.jacoco:org.jacoco.report:0.7.2.201409121644   0 15
jdom-1.1.jar org.jdom:jdom:1.1   0 9
org.eclipse.core.resources-3.7.100.v20110510-0712.jar org.jibx.config.3rdparty.org.eclipse:org.eclipse.core.resources:3.7.100.v20110510-0712   0 19
org.eclipse.core.resources-3.7.100.v20110510-0712.jar: resources-ant.jar   0 5
org.eclipse.core.runtime-3.7.0.v20110110.jar org.jibx.config.3rdparty.org.eclipse:org.eclipse.core.runtime:3.7.0.v20110110   0 21
org.eclipse.equinox.common-3.6.0.v20110523.jar org.jibx.config.3rdparty.org.eclipse:org.eclipse.equinox.common:3.6.0.v20110523   0 18
org.eclipse.text-3.5.100.v20110505-0800.jar org.jibx.config.3rdparty.org.eclipse:org.eclipse.text:3.5.100.v20110505-0800   0 16
json-20090211.jar org.json:json:20090211   0 9
jsoup-1.7.2.jar org.jsoup:jsoup:1.7.2   0 14
jetty-6.1.25.jar cpe:/a:jetty:jetty:6.1.25
cpe:/a:mortbay:jetty:6.1.25
cpe:/a:mortbay_jetty:jetty:6.1.25
org.mortbay.jetty:jetty:6.1.25 Medium 2 LOW 13
servlet-api-2.5-20081211.jar cpe:/a:mortbay_jetty:jetty:2.5.20081211 org.mortbay.jetty:servlet-api:2.5-20081211 Medium 1 LOW 18
rhino-1.7R4.jar org.mozilla:rhino:1.7R4   0 14
cvsclient-20060125.jar org.netbeans.lib:cvsclient:20060125   0 11
asm-all-4.0.jar org.ow2.asm:asm-all:4.0   0 16
asm-analysis-4.1.jar org.ow2.asm:asm-analysis:4.1   0 17
asm-debug-all-5.0.2.jar org.ow2.asm:asm-debug-all:5.0.2   0 16
asm-tree-4.1.jar org.ow2.asm:asm-tree:4.1   0 17
asm-util-4.1.jar org.ow2.asm:asm-util:4.1   0 17
asm-5.0.3.jar org.ow2.asm:asm:5.0.3   0 16
parboiled-core-1.1.4.jar org.parboiled:parboiled-core:1.1.4   0 15
parboiled-java-1.1.4.jar org.parboiled:parboiled-java:1.1.4   0 15
pegdown-1.2.1.jar org.pegdown:pegdown:1.2.1   0 15
lombok-1.14.8.jar org.projectlombok:lombok:1.14.8   0 13
lombok-1.14.8.jar: WindowsDriveInfo-i386.dll   0 1
lombok-1.14.8.jar: WindowsDriveInfo-x86_64.dll   0 1
jcl-over-slf4j-1.7.5.jar org.slf4j:jcl-over-slf4j:1.7.5   0 13
slf4j-api-1.7.6.jar org.slf4j:slf4j-api:1.7.6   0 13
slf4j-jdk14-1.5.6.jar org.slf4j:slf4j-jdk14:1.5.6   0 13
slf4j-log4j12-1.5.10.jar org.slf4j:slf4j-log4j12:1.5.10   0 13
slf4j-nop-1.5.3.jar org.slf4j:slf4j-nop:1.5.3   0 13
aether-util-1.7.jar org.sonatype.aether:aether-util:1.7   0 12
gossip-1.2.jar org.sonatype.gossip:gossip:1.2   0 18
gshell-io-2.4.jar org.sonatype.gshell:gshell-io:2.4   0 10
plexus-build-api-0.0.7.jar org.sonatype.plexus:plexus-build-api:0.0.7   0 11
plexus-cipher-1.4.jar org.sonatype.plexus:plexus-cipher:1.4   0 12
plexus-sec-dispatcher-1.4.jar org.sonatype.plexus:plexus-sec-dispatcher:1.4   0 12
sisu-guice-3.1.0-no_aop.jar cpe:/a:springsource:spring_framework:3.1.0
cpe:/a:vmware:springsource_spring_framework:3.1.0
org.sonatype.sisu:sisu-guice:3.1.0 Medium 5 HIGHEST 18
model-builder-1.3.jar org.sonatype.spice:model-builder:1.3   0 15
spring-core-3.1.3.RELEASE.jar cpe:/a:springsource:spring_framework:3.1.3
cpe:/a:vmware:springsource_spring_framework:3.1.3
org.springframework:spring-core:3.1.3.RELEASE Medium 5 HIGHEST 17
sqljet-1.0.4.jar org.tmatesoft.sqljet:sqljet:1.0.4   0 11
svnkit-1.3.5.jar org.tmatesoft.svnkit:svnkit:1.3.5   0 13
svnkit-1.3.5.jar: template.jar   0 1
trilead-ssh2-build213-svnkit-1.3-patch.jar com.trilead:trilead-ssh2:build213-svnkit-1.3-patch   0 8
xz-1.0.jar org.tukaani:xz:1.0   0 11
oro-2.0.8.jar oro:oro:2.0.8   0 8
git-commit-id-plugin-2.1.12.jar cpe:/a:git:git:2.1.12 pl.project13.maven:git-commit-id-plugin:2.1.12 High 1 LOW 13
plexus-utils-1.0.2.jar plexus:plexus-utils:1.0.2   0 15
regexp-1.3.jar regexp:regexp:1.3   0 8
js-1.6R7.jar rhino:js:1.6R7   0 10
sslext-1.2-0.jar cpe:/a:apache:struts:1.2.0 sslext:sslext:1.2-0 High 4 LOW 13
stax-api-1.0.1.jar stax:stax-api:1.0.1   0 12
xalan-2.7.0.jar xalan:xalan:2.7.0   0 7
xercesImpl-2.11.0.jar xerces:xercesImpl:2.11.0   0 24
xml-apis-1.0.b2.jar xml-apis:xml-apis:1.0.b2   0 16
xmlpull-1.1.3.1.jar xmlpull:xmlpull:1.1.3.1   0 8
xmlunit-1.5.jar xmlunit:xmlunit:1.5   0 10
xpp3_min-1.1.4c.jar xpp3:xpp3_min:1.1.4c   0 11

Dependencies

tools.jar

File Path: C:\eclipse-addons\jdk\jdk32-1.8.0_25\jre\..\lib\tools.jar
MD5: 3ED09BC7A9298C63C99324E4028CDC0D
SHA1: F66C3CB9DEBECD5B3BC214D5617684441C16C6AC

Identifiers

  • None

antlr-2.7.7.jar

Description:  A framework for constructing recognizers, compilers, and translators from grammatical descriptions containing Java, C#, C++, or Python actions.

File Path: C:\Users\Jeremy\.m2\repository\antlr\antlr\2.7.7\antlr-2.7.7.jar
MD5: F8F1352C52A4C6A500B597596501FC64
SHA1: 83CD2CD674A217ADE95A4BB83A8A14F351F48BD0

Identifiers

aopalliance-1.0.jar

Description: AOP Alliance

File Path: C:\Users\Jeremy\.m2\repository\aopalliance\aopalliance\1.0\aopalliance-1.0.jar
MD5: 04177054E180D09E3998808EFA0401C7
SHA1: 0235BA8B489512805AC13A8F9EA77A1CA5EBE3E8

Identifiers

asm-3.3.1.jar

File Path: C:\Users\Jeremy\.m2\repository\asm\asm\3.3.1\asm-3.3.1.jar
MD5: 1AD1E8959324B0F680B8E62406955642
SHA1: 1D5F20B4EA675E6FAB6AB79F1CD60EC268DDC015

Identifiers

backport-util-concurrent-3.1.jar

Description: Dawid Kurzyniec's backport of JSR 166

File Path: C:\Users\Jeremy\.m2\repository\backport-util-concurrent\backport-util-concurrent\3.1\backport-util-concurrent-3.1.jar
MD5: 748BB0CBF4780B2E3121DC9C12E10CD9
SHA1: 682F7AC17FED79E92F8E87D8455192B63376347B

Identifiers

ganymed-ssh2-build210.jar

Description: Ganymed SSH2 for Java is a library which implements the SSH-2 protocol in pure Java

File Path: C:\Users\Jeremy\.m2\repository\ch\ethz\ganymed\ganymed-ssh2\build210\ganymed-ssh2-build210.jar
MD5: D898FE406A32B5C55283C719CB48328B
SHA1: B2F81C85A7A2A1B43727D2582710AF85C979050B

Identifiers

classworlds-1.1.jar

File Path: C:\Users\Jeremy\.m2\repository\classworlds\classworlds\1.1\classworlds-1.1.jar
MD5: C20629BAA65F1F2948B37AA393B0310B
SHA1: 60C708F55DEEB7C5DFCE8A7886EF09CBC1388ECA

Identifiers

jcommander-1.35.jar

Description: A Java framework to parse command line options with annotations.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\beust\jcommander\1.35\jcommander-1.35.jar
MD5: 90216444FAB67357C5BDF3293B47107E
SHA1: 47592E181B0BDBBEB63029E08C5E74F6803C4EDD

Identifiers

jackson-annotations-2.4.2.jar

Description: Core annotations used for value types, used by Jackson data binding package.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\fasterxml\jackson\core\jackson-annotations\2.4.2\jackson-annotations-2.4.2.jar
MD5: E4CE2608B3B400551E3028C6A5B7CED6
SHA1: 6BB52AF09372D5064206D47D7887D41671F00F7D

Identifiers

jackson-core-2.4.2.jar

Description: Core Jackson abstractions, basic JSON streaming API implementation

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\fasterxml\jackson\core\jackson-core\2.4.2\jackson-core-2.4.2.jar
MD5: 1800D8B5C3324EAA7CFF549BAD28A98B
SHA1: CEB72830D95C512B4B300A38F29FEBC85BDF6E4B

Identifiers

jackson-databind-2.2.3.jar

Description: General data-binding functionality for Jackson: works on core streaming API

File Path: C:\Users\Jeremy\.m2\repository\com\fasterxml\jackson\core\jackson-databind\2.2.3\jackson-databind-2.2.3.jar
MD5: 6E8D8B13D5D4200B782516D2CD6C9469
SHA1: 03AE380888029DAEFB91D3ECDCA3A37D8CB92BC9

Identifiers

github-maven-core-0.11.jar

Description: Core library for GitHub Maven plugins

File Path: C:\Users\Jeremy\.m2\repository\com\github\github\github-maven-core\0.11\github-maven-core-0.11.jar
MD5: FCCCA694303431E814C2AC000FCB2122
SHA1: 886B3D35E3C6951E8DE699FD55CF9AB96E7378BE

Identifiers

site-maven-plugin-0.11.jar

Description: Maven plugin that commits files to a branch in a GitHub repository

File Path: C:\Users\Jeremy\.m2\repository\com\github\github\site-maven-plugin\0.11\site-maven-plugin-0.11.jar
MD5: 4F79BFDEB9033424D5DF61BEFB5E27E4
SHA1: B44D0F323A653543CE35853C456421FD178ED68E

Identifiers

annotations-3.0.0.jar

Description: Annotation supports the FindBugs tool

License:

GNU Lesser Public License: http://www.gnu.org/licenses/lgpl.html
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\findbugs\annotations\3.0.0\annotations-3.0.0.jar
MD5: D83DFCCA31E14941F868976DF30583E9
SHA1: E20984C024B3BAF63D06CF481C65C242DCD541DE

Identifiers

bcel-findbugs-6.0.jar

Description: Apache Commons Bytecode Engineering Library

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\findbugs\bcel-findbugs\6.0\bcel-findbugs-6.0.jar
MD5: 981D851885E2128EF1A55FE62EAE1605
SHA1: 7A7563BA41DCEFF3DA4AF4927B7C09908BD5132C

Identifiers

findbugs-3.0.0.jar

Description: Findbugs: Because it's easy!

License:

GNU Lesser Public License: http://www.gnu.org/licenses/lgpl.html
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\findbugs\findbugs\3.0.0\findbugs-3.0.0.jar
MD5: 0986FCC6A8A2B1D0D62F32FF1C2B10CF
SHA1: E9A938F0CB34E2AB5853F9ECB1989F6F590EE385

Identifiers

jFormatString-3.0.0.jar

Description: jFormatString for Findbugs

License:

GNU Lesser Public License: http://www.gnu.org/licenses/lgpl.html
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\findbugs\jFormatString\3.0.0\jFormatString-3.0.0.jar
MD5: 22A6BAEE6CADA23D5F4EAB91ACD81F44
SHA1: D3995F9BE450813BC2CCEE8F0774C1A3033A0F30

Identifiers

jsr305-2.0.3.jar

Description: JSR305 Annotations for Findbugs

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\findbugs\jsr305\2.0.3\jsr305-2.0.3.jar
MD5: 195D5DB8981FBEC5FA18D5DF9FAD95ED
SHA1: 5871FB60DC68D67DA54A663C3FD636A10A532948

Identifiers

gson-2.2.2.jar

Description: Google Gson library

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\gson\gson\2.2.2\gson-2.2.2.jar
MD5: 08CCE0687047CC068B6F1BDD45B14CF4
SHA1: 1F96456CA233DEC780AA224BFF076D8E8BCA3908

Identifiers

maven-scm-provider-svnjava-1.13.jar

Description: This provider use a non ASL license compatible library (svnkit http://svnkit.com/).

License:

ASF: http://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\maven-scm-provider-svnjava\maven-scm-provider-svnjava\1.13\maven-scm-provider-svnjava-1.13.jar
MD5: 3C63975A4783C635388C443F87E4FA17
SHA1: F87BA6A4DA7BA58626CB521652D7834A0FC4FDCC

Identifiers

guava-jdk5-14.0.1.jar

Description:  Guava is a suite of core and expanded libraries that include utility classes, google's collections, io classes, and much much more. Guava has only one code dependency - javax.annotation, per the JSR-305 spec.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\guava\guava-jdk5\14.0.1\guava-jdk5-14.0.1.jar
MD5: F1902F2470937178C39C2CBB23058B50
SHA1: EC21C29E3F8AFCCFF893486DE213A86998DAF134

Identifiers

guava-15.0.jar

Description:  Guava is a suite of core and expanded libraries that include utility classes, google's collections, io classes, and much much more. Guava has two code dependencies - javax.annotation per the JSR-305 spec and javax.inject per the JSR-330 spec.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\guava\guava\15.0\guava-15.0.jar
MD5: 2C10BB2CA3AC8B55B0E77E54A7EB3744
SHA1: ED727A8D9F247E2050281CB083F1C77B09DCB5CD

Identifiers

htmlcompressor-1.5.2.jar

Description: HtmlCompressor is a small, fast and very easy to use Java library that minifies given HTML or XML source by removing extra whitespaces, comments and other unneeded characters without breaking the content structure. As a result pages become smaller in size and load faster. A command-line version of the compressor is also available.

License:

Apache License 2.0: http://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\com\googlecode\htmlcompressor\htmlcompressor\1.5.2\htmlcompressor-1.5.2.jar
MD5: 303593F65A9AB6B080B111D94F5D6D9F
SHA1: 76E7CF6469239CC5395AC50E1E90CA2C2D28AE63

Identifiers

JavaEWAH-0.7.9.jar

Description: The bit array data structure is implemented in Java as the BitSet class. Unfortunately, this fails to scale without compression. JavaEWAH is a word-aligned compressed variant of the Java bitset class. It uses a 64-bit run-length encoding (RLE) compression scheme. The goal of word-aligned compression is not to achieve the best compression, but rather to improve query processing time. Hence, we try to save CPU cycles, maybe at the expense of storage. However, the EWAH scheme we implemented is always more efficient storage-wise than an uncompressed bitmap (implemented in Java as the BitSet class). Unlike some alternatives, javaewah does not rely on a patented scheme.

License:

Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\googlecode\javaewah\JavaEWAH\0.7.9\JavaEWAH-0.7.9.jar
MD5: 3186322B6558B126CEF0E00BDBD2466C
SHA1: ECEAF316A8FAF0E794296EBE158AE110C7D72A5A

Identifiers

maven-java-formatter-plugin-0.4.jar

Description: Plugin for formatting Java source code

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\googlecode\maven-java-formatter-plugin\maven-java-formatter-plugin\0.4\maven-java-formatter-plugin-0.4.jar
MD5: 61B2F9F19075827C3C3E0B86CF12C74A
SHA1: 1337C04C7E976A338CA65381EFC236DCB3F79D13

Identifiers

annotations-9.0.4.jar

Description: Annotations used by IntelliJ IDEA for static code analysis

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\com\intellij\annotations\9.0.4\annotations-9.0.4.jar
MD5: AEE441BDC048178E72A3C24A1987B352
SHA1: CAFC03CC8BDD1C9106BDA1DA71C41E75523383D6

Identifiers

jsch.agentproxy.connector-factory-0.0.6.jar

Description: a proxy to ssh-agent and Pageant in Java

License:

http://www.jcraft.com/jsch-agent-proxy/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\com\jcraft\jsch.agentproxy.connector-factory\0.0.6\jsch.agentproxy.connector-factory-0.0.6.jar
MD5: A1FC36B8EBFC5F34878CE16034648F5C
SHA1: 250AB907C35A1777E70D54038086E84855D74AEA

Identifiers

jsch.agentproxy.core-0.0.6.jar

Description: a proxy to ssh-agent and Pageant in Java

License:

http://www.jcraft.com/jsch-agent-proxy/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\com\jcraft\jsch.agentproxy.core\0.0.6\jsch.agentproxy.core-0.0.6.jar
MD5: 32924B01B89D4F9224EFB5DE1D31C94F
SHA1: FB27D5A19479C7617C74AACA4F1D38063AC7A25E

Identifiers

jsch.agentproxy.jsch-0.0.6.jar

File Path: C:\Users\Jeremy\.m2\repository\com\jcraft\jsch.agentproxy.jsch\0.0.6\jsch.agentproxy.jsch-0.0.6.jar
MD5: F4FBE0730E25CD4C72B93B39508AC8E3
SHA1: AEE40B481AD104A578584335B4859E49D4BE4F7A

Identifiers

jsch.agentproxy.pageant-0.0.6.jar

Description: a proxy to ssh-agent and Pageant in Java

License:

http://www.jcraft.com/jsch-agent-proxy/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\com\jcraft\jsch.agentproxy.pageant\0.0.6\jsch.agentproxy.pageant-0.0.6.jar
MD5: 5D2F7C016C883770A2166413F54FA597
SHA1: A4B88191BED87D3210D9666071B15B98E0447484

Identifiers

jsch.agentproxy.sshagent-0.0.6.jar

Description: a proxy to ssh-agent and Pageant in Java

License:

http://www.jcraft.com/jsch-agent-proxy/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\com\jcraft\jsch.agentproxy.sshagent\0.0.6\jsch.agentproxy.sshagent-0.0.6.jar
MD5: B071AF7E28166038773D93F241CD1729
SHA1: C552A54FECE150F69350FA11B9C28D0E455BCF4B

Identifiers

jsch.agentproxy.usocket-jna-0.0.6.jar

Description: a proxy to ssh-agent and Pageant in Java

License:

http://www.jcraft.com/jsch-agent-proxy/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\com\jcraft\jsch.agentproxy.usocket-jna\0.0.6\jsch.agentproxy.usocket-jna-0.0.6.jar
MD5: 872B4192BDDBBBB48E9E6A4D3DE341C6
SHA1: E5E027A2D77296A89088820D5B3FFD2705F513F1

Identifiers

jsch.agentproxy.usocket-nc-0.0.6.jar

Description: a proxy to ssh-agent and Pageant in Java

License:

http://www.jcraft.com/jsch-agent-proxy/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\com\jcraft\jsch.agentproxy.usocket-nc\0.0.6\jsch.agentproxy.usocket-nc-0.0.6.jar
MD5: 3FA9EAFFE4CE0E7E362F0C2FE3255856
SHA1: 01AE336DEAEB39FD712F9134B24343094901C03A

Identifiers

jsch-0.1.50.jar

Description: JSch is a pure Java implementation of SSH2

License:

Revised BSD: http://www.jcraft.com/jsch/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\com\jcraft\jsch\0.1.50\jsch-0.1.50.jar
MD5: 2360C0A51ADE7CD92F92F3C8467977B2
SHA1: FAE4A0B1F2A96CB8F58F38DA2650814C991CEA01

Identifiers

mksapi-jar-4.10.9049.jar

Description: MKS Integrity - Java API

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\mks\api\mksapi-jar\4.10.9049\mksapi-jar-4.10.9049.jar
MD5: B313C9446337839B41ADED7841C85879
SHA1: 93FA3B67C070850183922D9802C240E7CE4618CA

Identifiers

license-maven-plugin-2.7.jar

Description: Maven 2 plugin to check and update license headers in source files

File Path: C:\Users\Jeremy\.m2\repository\com\mycila\license-maven-plugin\2.7\license-maven-plugin-2.7.jar
MD5: A506BDEDCA898BDE2846847F5B5EC1B9
SHA1: 25BAAE2FBE23A55BA6D1D78E676F9F731835D3EC

Identifiers

mycila-xmltool-4.2.ga.jar

Description: Parent POM

License:

http://www.apache.org/licenses/LICENSE-2.0.html
File Path: C:\Users\Jeremy\.m2\repository\com\mycila\mycila-xmltool\4.2.ga\mycila-xmltool-4.2.ga.jar
MD5: BBFF7C80F0AEB22F96DF9BD0EA9B4627
SHA1: B221B3296AF92EFD06FD0E218D7D36F41C475575

Identifiers

  • maven: com.mycila:mycila-xmltool:4.2.ga   Confidence:HIGHEST
  • cpe: cpe:/a:springsource:spring_framework:4.2   Confidence:LOW   
  • cpe: cpe:/a:vmware:springsource_spring_framework:4.2   Confidence:LOW   

checkstyle-5.7.jar

Description: Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard

License:

GNU Lesser General Public License: http://www.gnu.org/licenses/old-licenses/lgpl-2.1.txt
File Path: C:\Users\Jeremy\.m2\repository\com\puppycrawl\tools\checkstyle\5.7\checkstyle-5.7.jar
MD5: 3E091EA6145D4D1F102FCA831CB6495C
SHA1: 1D17195E8AFE54092C4899AC265085E346F1E780

Identifiers

qdox-1.12.1.jar

Description:  QDox is a high speed, small footprint parser for extracting class/interface/method definitions from source files complete with JavaDoc @tags. It is designed to be used by active code generators or documentation tools.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\thoughtworks\qdox\qdox\1.12.1\qdox-1.12.1.jar
MD5: 9FB6970F934F8D836AE8E6D133316AB4
SHA1: F7122F6AB1F64BDF9F5970B0E89BFB355E036897

Identifiers

xstream-1.4.4.jar

File Path: C:\Users\Jeremy\.m2\repository\com\thoughtworks\xstream\xstream\1.4.4\xstream-1.4.4.jar
MD5: 4B2A6D156777975A7D15FE53A1C37FE7
SHA1: 488E9E4A47AFC81D2B2DEC3C3EB3A4D0F10FE105

Identifiers

htmlcompressor-maven-plugin-1.3.jar

Description: Maven HTMLCompressor Plugin allows to compress html/xml by adding a few lines to the pom file.

License:

Apache License 2.0: http://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\com\tunyk\mvn\plugins\htmlcompressor\htmlcompressor-maven-plugin\1.3\htmlcompressor-maven-plugin-1.3.jar
MD5: 464D1CAFEC2A8665BE77A6E17676A759
SHA1: 0EA373E033180CC7C94374243768FDC543A3F999

Identifiers

yuicompressor-2.4.6.jar

Description:  The YUI Compressor is a JavaScript compressor which, in addition to removing comments and white-spaces, obfuscates local variables using the smallest possible variable name. This obfuscation is safe, even when using constructs such as 'eval' or 'with' (although the compression is not optimal is those cases) Compared to jsmin, the average savings is around 20%.

License:

BSD License: http://developer.yahoo.com/yui/license.html
File Path: C:\Users\Jeremy\.m2\repository\com\yahoo\platform\yui\yuicompressor\2.4.6\yuicompressor-2.4.6.jar
MD5: 51C238FD93BAA4D2CE86C4ACD4652932
SHA1: 5B8477E867040BA58B6C8A7AC6DEB6DA22109237

Identifiers

commons-beanutils-core-1.8.3.jar

File Path: C:\Users\Jeremy\.m2\repository\commons-beanutils\commons-beanutils-core\1.8.3\commons-beanutils-core-1.8.3.jar
MD5: 944F66E681239C8353E8497920F1E5D3
SHA1: 75812698E5E859F2CB587C622C4CDFCD61676426

Identifiers

commons-beanutils-1.7.0.jar

File Path: C:\Users\Jeremy\.m2\repository\commons-beanutils\commons-beanutils\1.7.0\commons-beanutils-1.7.0.jar
MD5: 0F18ACF5FA857F9959675E14D901A7CE
SHA1: 5675FD96B29656504B86029551973D60FB41339B

Identifiers

commons-chain-1.1.jar

Description: An implmentation of the GoF Chain of Responsibility pattern

File Path: C:\Users\Jeremy\.m2\repository\commons-chain\commons-chain\1.1\commons-chain-1.1.jar
MD5: D4CE482153073855E7C6453DC3C725CB
SHA1: 3038BD41DCDB2B63B8C6DCC8C15F0FDF3F389012

Identifiers

commons-cli-1.2.jar

Description:  Commons CLI provides a simple API for presenting, processing and validating a command line interface.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-cli\commons-cli\1.2\commons-cli-1.2.jar
MD5: BFDCAE1FF93F0C07D733F03BDCE28C9E
SHA1: 2BF96B7AA8B611C177D329452AF1DC933E14501C

Identifiers

commons-codec-1.6.jar

Description:  The codec package contains simple encoder and decoders for various formats such as Base64 and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-codec\commons-codec\1.6\commons-codec-1.6.jar
MD5: 5970F54883B4831B24B97F1125BA27E6
SHA1: B7F0FC8F61ECADEB3695F0B9464755EEE44374D4

Identifiers

commons-collections-3.2.1.jar

Description: Types that extend and augment the Java Collections Framework.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-collections\commons-collections\3.2.1\commons-collections-3.2.1.jar
MD5: 13BC641AFD7FD95E09B260F69C1E4C91
SHA1: 761EA405B9B37CED573D2DF0D1E3A4E0F9EDC668

Identifiers

commons-digester-2.0.jar

Description:  The Digester package lets you configure an XML to Java object mapping module which triggers certain actions called rules whenever a particular pattern of nested XML elements is recognized.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-digester\commons-digester\2.0\commons-digester-2.0.jar
MD5: 7C09AC9633A3BBD306FBF87E7FF50E71
SHA1: 3DBD8A76683CD563583A2C78C356AD8B8ACF38BF

Identifiers

commons-httpclient-3.0.jar

Description: The HttpClient component supports the client-side of RFC 1945 (HTTP/1.0) and RFC 2616 (HTTP/1.1) , several related specifications (RFC 2109 (Cookies) , RFC 2617 (HTTP Authentication) , etc.), and provides a framework by which new request types (methods) or HTTP extensions can be created easily.

File Path: C:\Users\Jeremy\.m2\repository\commons-httpclient\commons-httpclient\3.0\commons-httpclient-3.0.jar
MD5: CD69C70D6C078F4340BD5E867EC6F1B6
SHA1: 336A280D178BB957E5233189F0F32E067366C4E5

Identifiers

CVE-2014-3577  

Severity: Medium
CVSS Score: 5.8

org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a "CN=" string in a field in the distinguished name (DN) of a certificate, as demonstrated by the "foo,CN=www.apache.org" string in the O field.

Vulnerable Software & Versions: (show all)

CVE-2012-6153  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-20 Improper Input Validation

http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a certificate with a subject that specifies a common name in a field that is not the CN field. NOTE: this issue exists because of an incomplete fix for CVE-2012-5783.

Vulnerable Software & Versions: (show all)

CVE-2012-5783  

Severity: Medium
CVSS Score: 5.8
CWE: CWE-20 Improper Input Validation

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service (FPS) merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

Vulnerable Software & Versions: (show all)

commons-io-2.2.jar

Description:  The Commons IO library contains utility classes, stream implementations, file filters, file comparators, endian transformation classes, and much more.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-io\commons-io\2.2\commons-io-2.2.jar
MD5: 6AD49E3E16C2342E9EE9599CE04775E6
SHA1: 83B5B8A7BA1C08F9E8C8FF2373724E33D3C1E22A

Identifiers

commons-lang-2.6.jar

Description:  Commons Lang, a package of Java utility classes for the classes that are in java.lang's hierarchy, or are considered to be so standard as to justify existence in java.lang.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-lang\commons-lang\2.6\commons-lang-2.6.jar
MD5: 4D5C1693079575B362EDF41500630BBD
SHA1: 0CE1EDB914C94EBC388F086C6827E8BDEEC71AC2

Identifiers

commons-logging-1.1.1.jar

Description: Commons Logging is a thin adapter allowing configurable bridging to other, well known logging systems.

File Path: C:\Users\Jeremy\.m2\repository\commons-logging\commons-logging\1.1.1\commons-logging-1.1.1.jar
MD5: ED448347FC0104034AA14C8189BF37DE
SHA1: 5043BFEBC3DB072ED80FBD362E7CAF00E885D8AE

Identifiers

commons-validator-1.4.0.jar

Description:  Commons Validator provides the building blocks for both client side validation and server side data validation. It may be used standalone or with a framework like Struts.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-validator\commons-validator\1.4.0\commons-validator-1.4.0.jar
MD5: 8F381C168688704A85C550CF343A5CA2
SHA1: 42FA1046955ADE59F5354A1876CFC523CEA33815

Identifiers

dom4j-1.6.1.jar

Description: dom4j: the flexible XML framework for Java

File Path: C:\Users\Jeremy\.m2\repository\dom4j\dom4j\1.6.1\dom4j-1.6.1.jar
MD5: 4D8F51D3FE3900EFC6E395BE48030D6D
SHA1: 5D3CCC056B6F056DBF0DDDFDF43894B9065A8F94

Identifiers

jakarta-regexp-1.4.jar

File Path: C:\Users\Jeremy\.m2\repository\jakarta-regexp\jakarta-regexp\1.4\jakarta-regexp-1.4.jar
MD5: 5D8B8C601C21B37AA6142D38F45C0297
SHA1: 0EA514A179AC1DD7E81C7E6594468B9B9910D298

Identifiers

javax.annotation-api-1.2.jar

Description: Common Annotations for the JavaTM Platform API

License:

CDDL + GPLv2 with classpath exception: https://glassfish.dev.java.net/nonav/public/CDDL+GPL.html
File Path: C:\Users\Jeremy\.m2\repository\javax\annotation\javax.annotation-api\1.2\javax.annotation-api-1.2.jar
MD5: 75FE320D2B3763BD6883AE1EDE35E987
SHA1: 479C1E06DB31C432330183F5CAE684163F186146

Identifiers

jsr250-api-1.0.jar

Description: JSR-250 Reference Implementation by Glassfish

License:

COMMON DEVELOPMENT AND DISTRIBUTION LICENSE (CDDL) Version 1.0: https://glassfish.dev.java.net/public/CDDLv1.0.html
File Path: C:\Users\Jeremy\.m2\repository\javax\annotation\jsr250-api\1.0\jsr250-api-1.0.jar
MD5: 4CD56B2E4977E541186DE69F5126B4A6
SHA1: 5025422767732A1AB45D93ABFEA846513D742DCF

Identifiers

cdi-api-1.0.jar

Description: APIs for JSR-299: Contexts and Dependency Injection for Java EE

File Path: C:\Users\Jeremy\.m2\repository\javax\enterprise\cdi-api\1.0\cdi-api-1.0.jar
MD5: 462C0959F0322016495F4598243BC0F2
SHA1: 44C453F60909DFC223552ACE63E05C694215156B

Identifiers

javax.inject-1.jar

Description: The javax.inject API

File Path: C:\Users\Jeremy\.m2\repository\javax\inject\javax.inject\1\javax.inject-1.jar
MD5: 289075E48B909E9E74E6C915B3631D2E
SHA1: 6975DA39A7040257BD51D21A231B76C915872D38

Identifiers

jsp-api-2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\javax\servlet\jsp\jsp-api\2.1\jsp-api-2.1.jar
MD5: B8A34113A3A1CE29C8C60D7141F5A704
SHA1: 63F943103F250EF1F3A4D5E94D145A0F961F5316

Identifiers

servlet-api-2.5.jar

File Path: C:\Users\Jeremy\.m2\repository\javax\servlet\servlet-api\2.5\servlet-api-2.5.jar
MD5: 69CA51AF4E9A67A1027A7F95B52C3E8F
SHA1: 5959582D97D8B61F4D154CA9E495AAFD16726E34

Identifiers

jaxen-1.1.4.jar

Description: Jaxen is a universal Java XPath engine.

License:

http://jaxen.codehaus.org/license.html
File Path: C:\Users\Jeremy\.m2\repository\jaxen\jaxen\1.1.4\jaxen-1.1.4.jar
MD5: 22AC9320AE8F9B03C4C98E8AB621A10C
SHA1: 8C06A96CF9150DED75C28B7087ED821A93270C41

Identifiers

jdepend-2.9.1.jar

File Path: C:\Users\Jeremy\.m2\repository\jdepend\jdepend\2.9.1\jdepend-2.9.1.jar
MD5: 568D2B54187444B81EAB642ABF49C263
SHA1: 3D3089F585C2740A707C2CB99F4BB149A90D63F0

Identifiers

plastic-1.2.0.jar

File Path: C:\Users\Jeremy\.m2\repository\jgoodies\plastic\1.2.0\plastic-1.2.0.jar
MD5: 3241FB05A38C4E2841A3DBA1DD5873FF
SHA1: 81E91A58407950B0907EB26F8F74B7563DFF68BC

Identifiers

jline-0.9.94.jar

Description: JLine is a java library for reading and editing user input in console applications. It features tab-completion, command history, password masking, customizable keybindings, and pass-through handlers to use to chain to other console applications.

License:

BSD: LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\jline\jline\0.9.94\jline-0.9.94.jar
MD5: 46235C960277206F00FE24714437BC89
SHA1: 99A18E9A44834AFDEBC467294E1138364C207402

Identifiers

jline-0.9.94.jar: jline32.dll

File Path: C:\Users\Jeremy\.m2\repository\jline\jline\0.9.94\jline-0.9.94.jar\jline\jline32.dll
MD5: B3D9A08FF70440BA3638A325512F2CD8
SHA1: 67A55D8F8CA4937D784D4334E554770ADC2A1079

Identifiers

  • None

jline-0.9.94.jar: jline64.dll

File Path: C:\Users\Jeremy\.m2\repository\jline\jline\0.9.94\jline-0.9.94.jar\jline\jline64.dll
MD5: D2F7B0DB1231AAC1846A857F5C0C4F2C
SHA1: E297E4E990CE820E64D41F3F27B9BE90283F3F96

Identifiers

  • None

joda-time-2.0.jar

Description: Date and time library to replace JDK date handling

License:

Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\joda-time\joda-time\2.0\joda-time-2.0.jar
MD5: 8B6290A9834BE663FEF9C21ADEB8CF5E
SHA1: 752C0FE8A5B2D6704C9D9D6F06D9ABDCACF4045D

Identifiers

log4j-1.2.14.jar

Description: Log4j

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\log4j\log4j\1.2.14\log4j-1.2.14.jar
MD5: 599B8BA07D1D04F0EA34414E861D7AD1
SHA1: 03B254C872B95141751F414E353A25C2AC261B51

Identifiers

yuicompressor-maven-plugin-1.5.1.jar

Description:  To compress (Minify + Ofuscate) Javascript files and CSS files (using YUI Compressor from Julien Lecomte) and/or to check Javascript files with jslint.

License:

Public domain (Unlicense): http://unlicense.org/
File Path: C:\Users\Jeremy\.m2\repository\net\alchim31\maven\yuicompressor-maven-plugin\1.5.1\yuicompressor-maven-plugin-1.5.1.jar
MD5: B459214FA6DD07A4FD3DD5C8E9D120AF
SHA1: EAB7E1BE0D0591DB4158FAF729A910BE87A9A39B

Identifiers

javacc-5.0.jar

Description: JavaCC is a parser/scanner generator for Java.

License:

Berkeley Software Distribution (BSD) License: http://www.opensource.org/licenses/bsd-license.html
File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\javacc\javacc\5.0\javacc-5.0.jar
MD5: 1617A1868E4FC7502D62D792699B8E1A
SHA1: F19B7D4278B837FE92504946E6860B0BCC180956

Identifiers

jna-3.2.2.jar

File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\jna\3.2.2\jna-3.2.2.jar
MD5: 48F0E0081B45AED086FAF7678242A4D4
SHA1: D2598C4F68D43DC96B0FFA60E75BAA54845596FE

Identifiers

jna-3.2.2.jar: jnidispatch.dll

File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\jna\3.2.2\jna-3.2.2.jar\com\sun\jna\win32-amd64\jnidispatch.dll
MD5: F2607244D71E97C5FC7CBDAD20EDAA8B
SHA1: CE115BD61A7F2D344C38CC87DCD4989D800CF836

Identifiers

  • None

jna-3.2.2.jar: jnidispatch.dll

File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\jna\3.2.2\jna-3.2.2.jar\com\sun\jna\win32-x86\jnidispatch.dll
MD5: 4ACE9EEB32DE26548956B5E5841E90CB
SHA1: 8404282D31828B8FF7C7C1D536A6E0C66CCFE86C

Identifiers

  • None

platform-3.4.0.jar

Description: Java Native Access Platform

License:

LGPL, version 2.1: http://creativecommons.org/licenses/LGPL/2.1/
File Path: C:\Users\Jeremy\.m2\repository\net\java\dev\jna\platform\3.4.0\platform-3.4.0.jar
MD5: C5057D6DC3A531708E4A91249FADDA3F
SHA1: E3F70017BE8100D3D6923F50B3D2EE17714E9C13

Identifiers

pmd-core-5.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\net\sourceforge\pmd\pmd-core\5.2.1\pmd-core-5.2.1.jar
MD5: 3A5FA74BF10B6877D7027C02311B43FB
SHA1: 69D6B11B2826F0840A1BDBE6D6C76A3BC3ED513A

Identifiers

pmd-java-5.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\net\sourceforge\pmd\pmd-java\5.2.1\pmd-java-5.2.1.jar
MD5: 15AC4D3495E5B20704227017B3E76336
SHA1: 9796B6EC52E61D5EA71FE5300B80F5449835AE22

Identifiers

pmd-javascript-5.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\net\sourceforge\pmd\pmd-javascript\5.2.1\pmd-javascript-5.2.1.jar
MD5: A1ECD23CD43AEF7B9DF24C59314CCB58
SHA1: EA1BA7AB0247CB0B0B3B90F0C862E3355786628D

Identifiers

pmd-jsp-5.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\net\sourceforge\pmd\pmd-jsp\5.2.1\pmd-jsp-5.2.1.jar
MD5: A61193A22C91BEE2B4A6634543910612
SHA1: 2D7D67ABF022D417B409B148BA11035170970547

Identifiers

saxon-9.1.0.8.jar

Description:  Saxon a complete and conformant implementation of the XSLT 2.0, XQuery 1.0, and XPath 2.0 Recommendations published on 23 January 2007 by W3C

License:

Mozilla Public License Version 1.0: http://www.mozilla.org/MPL/MPL-1.0.txt
File Path: C:\Users\Jeremy\.m2\repository\net\sourceforge\saxon\saxon\9.1.0.8\saxon-9.1.0.8.jar
MD5: 46C8543AA92A56DA1F3D96E5F8FCB7B5
SHA1: 9FFDD08CB74563CBD431C845238B414E933A0483

Identifiers

jaxws-maven-plugin-2.3.8.jar

Description: Maven plugin for JAX-WS RI. Fork of http://jax-ws-commons.java.net/jaxws-maven-plugin/

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\net\trajano\mojo\jaxws-maven-plugin\2.3.8\jaxws-maven-plugin-2.3.8.jar
MD5: 50071D394EEA88F26535330BE42EBCDF
SHA1: 33A0A7E7A355AAE46299DBA3088C9346941F3EBC

Identifiers

antlr-runtime-3.1.3.jar

Description: A framework for constructing recognizers, compilers, and translators from grammatical descriptions containing Java, C#, C++, or Python actions.

File Path: C:\Users\Jeremy\.m2\repository\org\antlr\antlr-runtime\3.1.3\antlr-runtime-3.1.3.jar
MD5: DF926FA1721F4B522C0607017CEFC3C8
SHA1: 3154E3DFD5B7466DF8F5151A95BE70584F74F76C

Identifiers

stringtemplate-3.2.jar

Description: StringTemplate is a java template engine for generating source code, web pages, emails, or any other formatted text output. StringTemplate is particularly good at multi-targeted code generators, multiple site skins, and internationalization/localization. It evolved over years of effort developing jGuru.com. StringTemplate also generates the stringtemplate website: http://www.stringtemplate.org and powers the ANTLR v3 code generator. Its distinguishing characteristic is that unlike other engines, it strictly enforces model-view separation. Strict separation makes websites and code generators more flexible and maintainable; it also provides an excellent defense against malicious template authors. There are currently about 600 StringTemplate source downloads a month.

License:

BSD licence: http://antlr.org/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\antlr\stringtemplate\3.2\stringtemplate-3.2.jar
MD5: AEAF9D050B63EA780E7CCA8A026BAF92
SHA1: 6FE2E3BB57DAEBD1555494818909F9664376DD6C

Identifiers

ant-launcher-1.9.4.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\ant\ant-launcher\1.9.4\ant-launcher-1.9.4.jar
MD5: 16D73969811366B9F9678AF1D0F04D05
SHA1: 334B62CB4BE0432769679E8B94E83F8FD5ED395C

Identifiers

ant-1.9.4.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\ant\ant\1.9.4\ant-1.9.4.jar
MD5: 53A32FC286A44982C829DE096BECFA3B
SHA1: 6D473E8653D952045F550F4EF225A9591B79094A

Identifiers

bcel-5.2.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\bcel\bcel\5.2\bcel-5.2.jar
MD5: 43D54687362FC2991D61201C453A8286
SHA1: 96B2CEFEB067C08C31225D48E2A689F814BAAE25

Identifiers

commons-compress-1.4.1.jar

Description:  Apache Commons Compress software defines an API for working with compression and archive formats. These include: bzip2, gzip, pack200, xz and ar, cpio, jar, tar, zip, dump.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\commons\commons-compress\1.4.1\commons-compress-1.4.1.jar
MD5: 7F7FF9255A831325F38A170992B70073
SHA1: B02E84A993D88568417536240E970C4B809126FD

Identifiers

commons-lang3-3.3.2.jar

Description:  Apache Commons Lang, a package of Java utility classes for the classes that are in java.lang's hierarchy, or are considered to be so standard as to justify existence in java.lang.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\commons\commons-lang3\3.3.2\commons-lang3-3.3.2.jar
MD5: 3128BF75A2549EBE38663401191BACAB
SHA1: 90A3822C38EC8C996E84C16A3477EF632CBC87A3

Identifiers

httpclient-4.3.5.jar

Description:  HttpComponents Client

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\httpclient\4.3.5\httpclient-4.3.5.jar
MD5: CFA682894E9D25D9202A5059E7E86794
SHA1: 9783D89B8EEA20A517A4AFC5F979BD2882B54C44

Identifiers

httpcore-4.3.2.jar

Description:  HttpComponents Core (blocking I/O)

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\httpcore\4.3.2\httpcore-4.3.2.jar
MD5: EE3D34DCE4A30C7D3002CADF8C9172C1
SHA1: 31FBBFF1DDBF98F3AA7377C94D33B0447C646B6E

Identifiers

httpmime-4.3.5.jar

Description:  HttpComponents HttpClient - MIME coded entities

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\httpmime\4.3.5\httpmime-4.3.5.jar
MD5: F009D66937722F9C3C217151ADE1F4D6
SHA1: 1DD0D38DF9C6D21E893F2E52403F1CD99E91CD81

Identifiers

jackrabbit-webdav-1.5.0.jar

Description: WebDAV library used by the Jackrabbit WebDAV support

File Path: C:\Users\Jeremy\.m2\repository\org\apache\jackrabbit\jackrabbit-webdav\1.5.0\jackrabbit-webdav-1.5.0.jar
MD5: 137D4D30C1C78972FEC7628C94F4F4A1
SHA1: B14C7FBBD34862D4D51C5E72BA3A69CDE892C260

Identifiers

CVE-2009-0026  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Multiple cross-site scripting (XSS) vulnerabilities in Apache Jackrabbit before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via the q parameter to (1) search.jsp or (2) swr.jsp.

Vulnerable Software & Versions: (show all)

doxia-core-1.6.jar

Description: Doxia core classes and interfaces.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-core\1.6\doxia-core-1.6.jar
MD5: B6DE6F089320D64D2520E61EBDB0202B
SHA1: 61DD1084EC7D093086DB714537439B02C76F0DEB

Identifiers

doxia-decoration-model-1.1.4.jar

Description: The Decoration Model handles the site descriptor, also known as site.xml.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-decoration-model\1.1.4\doxia-decoration-model-1.1.4.jar
MD5: FA6724AFD6DE08472445DBEECD641C29
SHA1: 4555B5CDA12B0CB1F00EC6CC61C5DDB07A81449C

Identifiers

doxia-integration-tools-1.6.jar

Description: A collection of tools to help the integration of Doxia in Maven plugins.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-integration-tools\1.6\doxia-integration-tools-1.6.jar
MD5: 086CED67C455860A867C1DC06CFCDE71
SHA1: AA12128117FACFA64C1AC8B8F70C6CF1DBF8B5CA

Identifiers

doxia-logging-api-1.6.jar

Description: Doxia Logging API.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-logging-api\1.6\doxia-logging-api-1.6.jar
MD5: BB28C3379FF121445269D71386214733
SHA1: ACA027F3574EDCD530014361F3D2AF413BA7A593

Identifiers

doxia-module-apt-1.6.jar

Description:  A Doxia module for Almost Plain Text source documents. APT format is supported both as source and target formats.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-apt\1.6\doxia-module-apt-1.6.jar
MD5: 64932E04E11F34E090071E127EE7EDAF
SHA1: 9C453C03B3FF320D09227E494EA66CD0EEBB0272

Identifiers

doxia-module-fml-1.6.jar

Description:  A Doxia module for FML source documents. FML format is only supported as source format.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-fml\1.6\doxia-module-fml-1.6.jar
MD5: 8EE4F701BEBF5AE903258753DAF007E1
SHA1: 67E3FAA49307E003BA717EB53330AEB02861DE19

Identifiers

doxia-module-markdown-1.6.jar

Description:  A Doxia module for Markdown source documents.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-markdown\1.6\doxia-module-markdown-1.6.jar
MD5: E276AF019966EA3B60ABCC6663A20FDE
SHA1: 427194DCC65FB7AD8E47FE53DE4800B5869278EA

Identifiers

doxia-module-xdoc-1.6.jar

Description:  A Doxia module for Xdoc source documents. Xdoc format is supported both as source and target formats.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-xdoc\1.6\doxia-module-xdoc-1.6.jar
MD5: 0181294953D40024D9DE2099B74E7DE8
SHA1: 68E3919146BCE8519FC3D750E7EF8FB3685FE1E8

Identifiers

doxia-module-xhtml-1.6.jar

Description:  A Doxia module for Xhtml source documents. Xhtml format is supported both as source and target formats.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-xhtml\1.6\doxia-module-xhtml-1.6.jar
MD5: 7A6AC991E2FA35A6D9AF5F75F975FE55
SHA1: 71DC8D1CE4C5FCD976AECB8339E331BA9F46F7E3

Identifiers

doxia-sink-api-1.1.4.jar

Description: Doxia Sink API.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-sink-api\1.1.4\doxia-sink-api-1.1.4.jar
MD5: 013259A0306738F86118C689A66C7AA8
SHA1: 06BDDCC2ADE60DE8867997061E214E72CF4B9B1D

Identifiers

doxia-site-renderer-1.1.4.jar

Description: The Site Renderer handles the rendering of sites.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-site-renderer\1.1.4\doxia-site-renderer-1.1.4.jar
MD5: E7388D2CCF4B6A9B0487725A327B5B3B
SHA1: ECA1027EB69745B0041520E3E4A252DD663527B1

Identifiers

enforcer-api-1.3.1.jar

Description:  This component provides the generic interfaces needed to implement custom rules for the maven-enforcer-plugin.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\enforcer\enforcer-api\1.3.1\enforcer-api-1.3.1.jar
MD5: 760E584ECA417F55FF0B5083467555E6
SHA1: 5C8B952625F745FC4B374361D78B34C16E16FE29

Identifiers

enforcer-rules-1.3.1.jar

Description: This component contains the standard Enforcer Rules

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\enforcer\enforcer-rules\1.3.1\enforcer-rules-1.3.1.jar
MD5: C6FB7A72724048489F407684820A184D
SHA1: FF90178941585324B64D3A86182D325A4A017EA1

Identifiers

maven-archiver-2.5.jar

Description: Provides utility methods for creating JARs and other archive files from a Maven project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-archiver\2.5\maven-archiver-2.5.jar
MD5: 7495B78E898FB9968487AB47CC1C7E5F
SHA1: C999AE305F22ECFC5A000DCA12A39B9491778BD5

Identifiers

maven-artifact-manager-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-artifact-manager\2.2.1\maven-artifact-manager-2.2.1.jar
MD5: F3E76A8A83F422A900886543C48914F7
SHA1: EC355B913C34D37080810F98E3F51ABECBE1572B

Identifiers

maven-artifact-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-artifact\2.2.1\maven-artifact-2.2.1.jar
MD5: 7B7613FD5DB72967269ABE7AB50B76E9
SHA1: 23600F790D4DAB2CB965419EAA982E3E84C428F8

Identifiers

maven-compat-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-compat\2.2.1\maven-compat-2.2.1.jar
MD5: 91F082F8A59B1ED84D1026B0C0003140
SHA1: 1CE11FCCD3C94D0D1EE861BD4237B210ACD2C2ED

Identifiers

maven-core-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-core\2.2.1\maven-core-2.2.1.jar
MD5: 7538CD62A04A378D4C1944E26C793164
SHA1: 6F488E461188496C62E161F32160B3465CE5901E

Identifiers

maven-error-diagnostics-2.2.1.jar

Description: Provides a manager component which will process a given Throwable instance through a set of diagnostic sub-components, and return a String message with user-friendly information about the error and possibly how to fix it.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-error-diagnostics\2.2.1\maven-error-diagnostics-2.2.1.jar
MD5: 8EAA64D20F32C0B0C1BEB9739BBB5FE3
SHA1: E81BB342D7D172F23D108DC8FA979A1FACDCDE8E

Identifiers

maven-jxr-2.5.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-jxr\2.5\maven-jxr-2.5.jar
MD5: 795C758F5C8A1A8EBE95F5B952D9832B
SHA1: 92DBA1E1C03124397644A55FE97F565C08F32341

Identifiers

maven-model-2.2.1.jar

Description: Maven Model

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-model\2.2.1\maven-model-2.2.1.jar
MD5: B269F663E3440E40BE4B696D9B7C2260
SHA1: C0A1C17436EC3FF5A56207C031D82277B4250A29

Identifiers

maven-monitor-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-monitor\2.2.1\maven-monitor-2.2.1.jar
MD5: 396E401208090417E0F18AD2B1BCCD92
SHA1: AFC57C3A1368CD34CACCB638E00523701F398C20

Identifiers

maven-plugin-api-3.1.0.jar

Description: The API for plugins - Mojos - development.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-plugin-api\3.1.0\maven-plugin-api-3.1.0.jar
MD5: 3A2AF8945D7B2AE38CA33A97F60A9611
SHA1: 8821FD1B81C6B960F7CE39F5DDE612C665146FD8

Identifiers

maven-plugin-descriptor-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-plugin-descriptor\2.2.1\maven-plugin-descriptor-2.2.1.jar
MD5: F28D3A50552A8D2943587638F5F01455
SHA1: 68D20AE3C40C4664DC52BE90338AF796DB7FFB32

Identifiers

maven-plugin-parameter-documenter-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-plugin-parameter-documenter\2.2.1\maven-plugin-parameter-documenter-2.2.1.jar
MD5: 8BA54F6E61F1B07EC7076BD27D3EAA9C
SHA1: 1A117BAAC49437FC5A6FCD9F18F779E6BAD4207E

Identifiers

maven-profile-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-profile\2.2.1\maven-profile-2.2.1.jar
MD5: 53DD14E28AAAD4BD5DD379DFDBF46A4C
SHA1: 3950071587027E5086E9C395574A60650C432738

Identifiers

maven-project-builder-3.0-alpha-2.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-project-builder\3.0-alpha-2\maven-project-builder-3.0-alpha-2.jar
MD5: 3F962398B452901B94A040C5CAC772F6
SHA1: C0549120B6220B1C4AF5A2859BC8196E1C8B6CC0

Identifiers

maven-project-3.0-alpha-2.jar

Description: This library is used to not only read Maven project object model files, but to assemble inheritence and to retrieve remote models as required.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-project\3.0-alpha-2\maven-project-3.0-alpha-2.jar
MD5: 2E5D64B450EA6CB9EB67E8E0F567C449
SHA1: FD7D64F9E8EC392132C716F07D35416051A7D09A

Identifiers

maven-repository-metadata-2.2.1.jar

Description: Per-directory repository metadata.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-repository-metadata\2.2.1\maven-repository-metadata-2.2.1.jar
MD5: C426B243119831168AF2FBD767254F59
SHA1: 98F0C07FCF1EEB213BEF8D9316A9935184084B06

Identifiers

maven-settings-builder-3.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-settings-builder\3.0\maven-settings-builder-3.0.jar
MD5: 134523C7B38175615B26504E642C960D
SHA1: 08234C1BDF7A9A28C671B0ABF11F8ADAA66440CD

Identifiers

maven-settings-2.2.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-settings\2.2.1\maven-settings-2.2.1.jar
MD5: 7C3DCFFD55434A860339DBA78F0C165A
SHA1: 2236FFE71FA5F78CE42B0F5FC22C54ED45F14294

Identifiers

maven-toolchain-1.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-toolchain\1.0\maven-toolchain-1.0.jar
MD5: FE52E10C1E277686F0B8492585771D98
SHA1: 1FF4A3F5869F68DFA05562A84E7A5D510D909608

Identifiers

maven-plugin-annotations-3.3.jar

Description: Java 5 annotations to use in Mojos

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugin-tools\maven-plugin-annotations\3.3\maven-plugin-annotations-3.3.jar
MD5: B9617AE0FA56756935298B97C252BFE4
SHA1: 101CB0295BB16C64E85F2B5354B57058E907B061

Identifiers

maven-antrun-plugin-1.8.jar

Description: Runs Ant scripts embedded in the POM

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-antrun-plugin\1.8\maven-antrun-plugin-1.8.jar
MD5: 3A8C5C8A01BFC6A104B7012A968C9BE4
SHA1: 0D02C0AF622AA6A0C86E81C519299E888E0A32A3

Identifiers

maven-assembly-plugin-2.5.3.jar

Description: A Maven plugin to create archives of your project's sources, classes, dependencies etc. from flexible assembly descriptors.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-assembly-plugin\2.5.3\maven-assembly-plugin-2.5.3.jar
MD5: 910B86CD96763BCDAC6F34883BED9B2B
SHA1: EC5BDF06503FC800864F9C430922317B8AF5F30E

Identifiers

maven-changelog-plugin-2.3.jar

Description: Produce SCM changelog reports.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-changelog-plugin\2.3\maven-changelog-plugin-2.3.jar
MD5: CA7BCA18BB56A20ACD842360B5E858F1
SHA1: 50D90237471F05727D1BC72868CF9EB2AF125C9A

Identifiers

maven-checkstyle-plugin-2.13.jar

Description: Generates a report on violations of code style and optionally fails the build if violations are detected.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-checkstyle-plugin\2.13\maven-checkstyle-plugin-2.13.jar
MD5: 450E309E9DA0696632F466E394874220
SHA1: 4BAE038CE74FA09FD97C2AD307D56B5C4F5F5CED

Identifiers

maven-clean-plugin-2.6.1.jar

Description:  The Maven Clean Plugin is a plugin that removes files generated at build-time in a project's directory.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-clean-plugin\2.6.1\maven-clean-plugin-2.6.1.jar
MD5: 8DCC382DC49B8156A676B1074B4AACFE
SHA1: BFDF7D6C2F8FC8759457E9D54F458BA56AC7B30F

Identifiers

maven-compiler-plugin-3.2.jar

Description: The Compiler Plugin is used to compile the sources of your project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-compiler-plugin\3.2\maven-compiler-plugin-3.2.jar
MD5: 510837B49CD043A646665784287DFAEC
SHA1: AEC10F274AC07FAFAB8906CB1AA69669D753B2C2

Identifiers

maven-dependency-plugin-2.9.jar

Description: Provides utility goals to work with dependencies like copying, unpacking, analyzing, resolving and many more.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-dependency-plugin\2.9\maven-dependency-plugin-2.9.jar
MD5: D714BC22E5FD63834D8F1029794611BD
SHA1: DE4DCFA8D36D9679F3649F11878C92104568122B

Identifiers

maven-deploy-plugin-2.8.2.jar

Description: Uploads the project artifacts to the internal remote repository.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-deploy-plugin\2.8.2\maven-deploy-plugin-2.8.2.jar
MD5: C9F211A7DDBAAE0583DDE1408C48138A
SHA1: 3C2D83ECD387E9843142AE92A0439792C1500319

Identifiers

maven-enforcer-plugin-1.3.1.jar

Description: The Loving Iron Fist of Maven

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-enforcer-plugin\1.3.1\maven-enforcer-plugin-1.3.1.jar
MD5: E68F035FD5A03FB7A12B6E05BB8D3A20
SHA1: F44A50B9286588AED05D42A6F2C8C362A53B595F

Identifiers

maven-gpg-plugin-1.6.jar

Description: Signs the project artifacts with GnuPG.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-gpg-plugin\1.6\maven-gpg-plugin-1.6.jar
MD5: E2CD7843F0714F8EEBFF181011817E0D
SHA1: 4EC125296D79F591E412CCC8EBDFCC3A91E2CDD7

Identifiers

maven-install-plugin-2.5.2.jar

Description: Copies the project artifacts to the user's local repository.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-install-plugin\2.5.2\maven-install-plugin-2.5.2.jar
MD5: 5D888555943FB34FFC35EAC586E7747E
SHA1: 8A67631619FC3C1D1F036E59362DDCE71E1E496F

Identifiers

maven-jar-plugin-2.5.jar

Description: Builds a Java Archive (JAR) file from the compiled project classes and resources.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-jar-plugin\2.5\maven-jar-plugin-2.5.jar
MD5: AD9DA176415F358AE3EE404222EA57A9
SHA1: 344D667F5EC8B90D03D698D096A1147672FC522F

Identifiers

maven-javadoc-plugin-2.10.1.jar

Description:  The Apache Maven Javadoc Plugin is a plugin that uses the javadoc tool for generating javadocs for the specified project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-javadoc-plugin\2.10.1\maven-javadoc-plugin-2.10.1.jar
MD5: F57A7D10960AFFB06443851532ECE7C1
SHA1: 5340B83668C2EEE6651E27D7CF9478F44821DC10

Identifiers

maven-jxr-plugin-2.5.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-jxr-plugin\2.5\maven-jxr-plugin-2.5.jar
MD5: 5F5DA32412C41571D8D65FB27BBAD10C
SHA1: 14ACE45746A3E73040EF30CF23C205A0B4E0B092

Identifiers

maven-pmd-plugin-3.3.jar

Description:  A Maven plugin for the PMD toolkit, that produces a report on both code rule violations and detected copy and paste fragments, as well as being able to fail the build based on these metrics.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-pmd-plugin\3.3\maven-pmd-plugin-3.3.jar
MD5: 015C91C43FF4424814844EC5E40C11D5
SHA1: AD9D3F5107FA4B7B97C193FCDECEAAF0E8562BD2

Identifiers

maven-project-info-reports-plugin-2.8.jar

Description:  The Maven Project Info Reports Plugin is a plugin that generates standard reports for the specified project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-project-info-reports-plugin\2.8\maven-project-info-reports-plugin-2.8.jar
MD5: 0AD51FC1D1F0E68526510AEB57A1B863
SHA1: D41069957B9BC11766AD11B22CADD09F404F5BF4

Identifiers

maven-release-plugin-2.5.1.jar

Description: This plugin is used to release a project with Maven, saving a lot of repetitive, manual work.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-release-plugin\2.5.1\maven-release-plugin-2.5.1.jar
MD5: 50A6E93751041225547B3CDAF139A210
SHA1: 2D97758E16251550F5D6A0D4C23B348B834CCD0F

Identifiers

maven-resources-plugin-2.7.jar

Description:  The Resources Plugin handles the copying of project resources to the output directory. There are two different kinds of resources: main resources and test resources. The difference is that the main resources are the resources associated to the main source code while the test resources are associated to the test source code. Thus, this allows the separation of resources for the main source code and its unit tests.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-resources-plugin\2.7\maven-resources-plugin-2.7.jar
MD5: 1992654402055D45FBCC84E5DC2911E6
SHA1: 94AF11389943A480ECEC7DB01B4DED1B9CDF57C5

Identifiers

maven-scm-plugin-1.9.2.jar

Description: Maven Plugin that allows accessing different SCMs.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-scm-plugin\1.9.2\maven-scm-plugin-1.9.2.jar
MD5: 58DAADCB23CF105780CD23D1B9D9CB89
SHA1: D086BAA3B14607AA48387D4889DC20C631D41CB1

Identifiers

maven-site-plugin-3.4.jar

Description: The Maven Site Plugin is a plugin that generates a site for the current project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-site-plugin\3.4\maven-site-plugin-3.4.jar
MD5: 74FC9747A6621866BC1F58CE63FCF78B
SHA1: 659CD5F1DD8BFF554CF52603339494CBF7F283C5

Identifiers

maven-source-plugin-2.4.jar

Description: The Maven 2 Source Plugin creates a JAR archive of the source files of the current project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-source-plugin\2.4\maven-source-plugin-2.4.jar
MD5: 7A09629D4455159172CDC8EC7A88D8A4
SHA1: 46F0D7F7823D729BA300D3F8929900C7E9CB5AC0

Identifiers

maven-surefire-plugin-2.18.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-surefire-plugin\2.18.1\maven-surefire-plugin-2.18.1.jar
MD5: 32C355BE4424C35F6AAB5F6954B06011
SHA1: 402FD3066FD6D85EA4A1A3E7CD82A7E35037E6E8

Identifiers

maven-surefire-report-plugin-2.18.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-surefire-report-plugin\2.18.1\maven-surefire-report-plugin-2.18.1.jar
MD5: BEB072D2D6C7AA5AB1F1E3A4139D3B27
SHA1: BBDBBBBE56879A7465AB083B64C764F4F41D9903

Identifiers

maven-war-plugin-2.6.jar

Description: Builds a Web Application Archive (WAR) file from the project output and its dependencies.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugins\maven-war-plugin\2.6\maven-war-plugin-2.6.jar
MD5: 7F5F4699147B98B9AB1EE218615B7477
SHA1: E02EEF0EABB0A67A5F4A048212D3C0232976C9E8

Identifiers

maven-release-api-2.5.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\release\maven-release-api\2.5.1\maven-release-api-2.5.1.jar
MD5: 7A1C8BAF3C9F4BFD82682370BFB61638
SHA1: AB0958E483C113BC757E89835AC2D5C677078DD5

Identifiers

maven-release-manager-2.5.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\release\maven-release-manager\2.5.1\maven-release-manager-2.5.1.jar
MD5: 858EAA5BE92426BF05FE97CABF0E1207
SHA1: CBC891B44CEB2BA78A463087723C8B51F1141D7E

Identifiers

maven-reporting-api-3.0.jar

Description: API to manage report generation.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\reporting\maven-reporting-api\3.0\maven-reporting-api-3.0.jar
MD5: 48CD00ABC388C5156879B335E869ADAB
SHA1: B2541DD07D08CD5EFF9BD4554A2AD6A4198E2DFE

Identifiers

maven-reporting-exec-1.2.jar

Description: Classes to manage report plugin executions with Maven 3.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\reporting\maven-reporting-exec\1.2\maven-reporting-exec-1.2.jar
MD5: 6A2EF57BF3642D82A4363F23F2BC06D5
SHA1: E0D95FC8F5C4ABB846142998C176A06BC71C5AE2

Identifiers

maven-reporting-impl-2.2.jar

Description: Abstract classes to manage report generation.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\reporting\maven-reporting-impl\2.2\maven-reporting-impl-2.2.jar
MD5: 374A6837C2AE2FC5FF814B2C31B6E6D6
SHA1: 42D1BD175ECA91BCC613B699331125AB3B2292E1

Identifiers

maven-scm-api-1.8.jar

Description: The SCM API provides mechanisms to manage all SCM tools.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-api\1.8\maven-scm-api-1.8.jar
MD5: 1DEDE061CE699FDD80EA96AAFD72EC35
SHA1: ED97C180FB299713862C17C07006CC24137973CC

Identifiers

maven-scm-manager-plexus-1.8.jar

Description: SCM Plexus component.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-manager-plexus\1.8\maven-scm-manager-plexus-1.8.jar
MD5: F82E2C3B2B32CA1ED61E543FD46F9B57
SHA1: 0C40252207550975E3235816A24EED3C932A4C72

Identifiers

maven-scm-provider-accurev-1.9.2.jar

Description: SCM Provider implementation for AccuRev (http://www.accurev.com/).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-accurev\1.9.2\maven-scm-provider-accurev-1.9.2.jar
MD5: 67BC8308A48380F6454D968ADE42737E
SHA1: E0B4387D06131277AD70718408D0141C1974E3C3

Identifiers

maven-scm-provider-bazaar-1.8.jar

Description: SCM Provider implementation for Bazaar (http://bazaar-vcs.org/).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-bazaar\1.8\maven-scm-provider-bazaar-1.8.jar
MD5: DE72550FBE7BF252AEEEEC9193CF82C4
SHA1: F1AC373BBAB601A401C8C7A32C9C79DF40B2AEC0

Identifiers

maven-scm-provider-clearcase-1.8.jar

Description: SCM Provider implementation for Clearcase (http://www-306.ibm.com/software/awdtools/clearcase/).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-clearcase\1.8\maven-scm-provider-clearcase-1.8.jar
MD5: 5B506E7656856E57B04339DFB0A4E2DF
SHA1: AFE2771B02524F218B8CB1A4F46A4B8084D81E46

Identifiers

maven-scm-provider-cvs-commons-1.9.2.jar

Description: Common library for SCM CVS Provider.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-cvs-commons\1.9.2\maven-scm-provider-cvs-commons-1.9.2.jar
MD5: C3875E63B604C1C585BF731A8D2B9517
SHA1: 4F65B88F1C1D61C1E94D3F2DEEBBA0EC3F80E12E

Identifiers

maven-scm-provider-cvsexe-1.8.jar

Description: Executable implementation for SCM CVS Provider.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-cvsexe\1.8\maven-scm-provider-cvsexe-1.8.jar
MD5: 108CE95885945384D951FE0DD247C60B
SHA1: 38138AB8C05D1A138F799853854B58076D17013F

Identifiers

maven-scm-provider-cvsjava-1.8.jar

Description: Java implementation for SCM CVS Provider.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-cvsjava\1.8\maven-scm-provider-cvsjava-1.8.jar
MD5: 8733AC4F7EE027BC3BB24EC053DD82E9
SHA1: CE4F6CADB1716B223BBF14155B87769EC629E04F

Identifiers

maven-scm-provider-git-commons-1.9.2.jar

Description: Common library for SCM Git Provider.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-git-commons\1.9.2\maven-scm-provider-git-commons-1.9.2.jar
MD5: 5A35C7C9BFABEE178BCB7CF940D516AE
SHA1: DD202A7EF6A0C932C442BECAAF6CC85C6DB008D8

Identifiers

maven-scm-provider-gitexe-1.8.jar

Description: Executable implementation for SCM Git Provider.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-gitexe\1.8\maven-scm-provider-gitexe-1.8.jar
MD5: 65ED02D6D9C322C66B536F7847C2BA73
SHA1: 3FDDB3A0F932FEF6351F7212EBC2AD5F867DC78E

Identifiers

maven-scm-provider-hg-1.8.jar

Description: SCM Provider implementation for Mercurial Hg (http://www.selenic.com/mercurial/wiki/).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-hg\1.8\maven-scm-provider-hg-1.8.jar
MD5: D9CDD91F70D7070DC2AC1866336BD20B
SHA1: 50E193AABA8DC8DBF73FCD17B6C991EFCE152EB0

Identifiers

maven-scm-provider-integrity-1.9.2.jar

Description: SCM Provider implementation for MKS Integrity : http://mks.com/

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-integrity\1.9.2\maven-scm-provider-integrity-1.9.2.jar
MD5: 3C9B1D75293C8AE3F94D451AF6D972B1
SHA1: 612078DB4AA1F7F3EC13D38C89AE74F65BB24255

Identifiers

maven-scm-provider-jazz-1.8.jar

Description: A Maven SCM Provider for IBM Jazz SCM (http://jazz.net/).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-jazz\1.8\maven-scm-provider-jazz-1.8.jar
MD5: 96F0E3076FCEC7A6A28767E12F8EB1DA
SHA1: 8FB95ACF3C0211D9C1578403FFA34A3923A9E7E2

Identifiers

maven-scm-provider-local-1.8.jar

Description: SCM Provider implementation for Local.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-local\1.8\maven-scm-provider-local-1.8.jar
MD5: D9A16A10F0AC68DD4A1241A19FC44C86
SHA1: 0207E07689F93004BB4F43B8229D0727B446622A

Identifiers

maven-scm-provider-perforce-1.8.jar

Description: SCM Provider implementation for Perforce (http://www.perforce.com/).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-perforce\1.8\maven-scm-provider-perforce-1.8.jar
MD5: 7102CBE62E71B819E9222673A541F6F1
SHA1: A5240A5CF6526F5FB3BCB9B5C29A850A193A245D

Identifiers

maven-scm-provider-starteam-1.8.jar

Description: SCM Provider implementation for Starteam (http://www.borland.com/us/products/starteam/index.html).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-starteam\1.8\maven-scm-provider-starteam-1.8.jar
MD5: 7D7EAB16E6FC880FE300B7E4C68DD062
SHA1: 1563B30B2329578E38CC3F4AC45506C3657D0E1D

Identifiers

maven-scm-provider-svn-commons-1.8.jar

Description: Common library for SCM SVN Provider. Includes the svn-settings.xml configuration model.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-svn-commons\1.8\maven-scm-provider-svn-commons-1.8.jar
MD5: 6DDCB74F815AC42166B944919F9A0011
SHA1: 356B8FD88A89D356392F01554C68D2336113D979

Identifiers

maven-scm-provider-svnexe-1.8.jar

Description: Executable library for SCM SVN Provider.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-svnexe\1.8\maven-scm-provider-svnexe-1.8.jar
MD5: F6283E5AA96688A62153B2DE4560AEA1
SHA1: 0758A18CC366CC40ED95E31D1F73F8E75E0577EC

Identifiers

maven-scm-provider-synergy-1.8.jar

Description: SCM Provider implementation for Synergy (http://www.telelogic.com/corp/products/synergy/index.cfm).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-synergy\1.8\maven-scm-provider-synergy-1.8.jar
MD5: 5B340F5120420682558B4FC8B1C6F22C
SHA1: 8CD64430B32461842946BF6CCFBCCFD86B6AF585

Identifiers

maven-scm-provider-tfs-1.9.2.jar

Description: A Maven 2 SCM Provider for Microsoft Visual Studio Team Foundation Server.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-tfs\1.9.2\maven-scm-provider-tfs-1.9.2.jar
MD5: 44C10B964471D9B0EFD73FFCC08E53CD
SHA1: 9AFFB5FA0090BE94CAD0C6A8CF8743869740B1EB

Identifiers

maven-scm-provider-vss-1.8.jar

Description: SCM Provider implementation for VSS (http://msdn.microsoft.com/en-us/vstudio/aa700907.aspx).

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\scm\maven-scm-provider-vss\1.8\maven-scm-provider-vss-1.8.jar
MD5: 7BB06CFBE84825EB6C7049D946C875FF
SHA1: F3CB3F2D55A463FD65EA8961F67D2791058A0392

Identifiers

file-management-1.1.jar

Description: Basic API for lightweight logging

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\file-management\1.1\file-management-1.1.jar
MD5: 48C2ABE6B3A5045649714D06ECEB6BBD
SHA1: 1A751B5B40520478458F31DCA58D763C34580755

Identifiers

maven-common-artifact-filters-1.4.jar

Description: A collection of ready-made filters to control inclusion/exclusion of artifacts during dependency resolution.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-common-artifact-filters\1.4\maven-common-artifact-filters-1.4.jar
MD5: F349D565D928FF833DD1118EA565810E
SHA1: DE97FF2EFD804F06C3698A914F2D55205742BCC4

Identifiers

maven-dependency-analyzer-1.5.jar

Description:  Analyzes the dependencies of a project for undeclared or unused artifacts.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-dependency-analyzer\1.5\maven-dependency-analyzer-1.5.jar
MD5: B24E53FD2C1F4D2E7391010AB3F200E5
SHA1: DFC3552493B894B57499F731A281E42C7356BC9B

Identifiers

maven-dependency-tree-2.2.jar

Description: A tree-based API for resolution of Maven project dependencies

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-dependency-tree\2.2\maven-dependency-tree-2.2.jar
MD5: C9B2C60A0FD118C04595DB246F3075A2
SHA1: 5D9CE6ADD7B714B8095F0E3E396C5E9F8C5DCFEF

Identifiers

maven-doxia-tools-1.2.1.jar

Description: A collection of tools to help the integration of Doxia in Maven plugins.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-doxia-tools\1.2.1\maven-doxia-tools-1.2.1.jar
MD5: CC155EF6A28AF35660D03F5A75AC16FC
SHA1: C128C05D70E617F710A46DF709C4BB3A85233444

Identifiers

maven-filtering-1.3.jar

Description: A component to assist in filtering of resource files with properties from a Maven project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-filtering\1.3\maven-filtering-1.3.jar
MD5: 70945F82A560019AA51DE31AB1210DEB
SHA1: 3E4F4C305D40C598763ED842F52FAEB4DFB63C6C

Identifiers

maven-invoker-2.1.1.jar

Description: A component to programmatically invoke Maven.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-invoker\2.1.1\maven-invoker-2.1.1.jar
MD5: A828C635D3EA613E5B116A5F5FE70756
SHA1: 78CB230A29F501CF0631070E78F436902E3305DD

Identifiers

maven-mapping-1.0.jar

Description: A shared component to assist in interpolating file names using properties from a Maven project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-mapping\1.0\maven-mapping-1.0.jar
MD5: 5B376B298DEA015E594DE0C3000ED4C7
SHA1: 73181B19212DD4328FB2858CD08F01EE0D485C0E

Identifiers

maven-repository-builder-1.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-repository-builder\1.0\maven-repository-builder-1.0.jar
MD5: B977B4412B5476B6F104B11E65CFDC2C
SHA1: 2E68CDA42D3A849BF7DE013F58DFF8D2913E8174

Identifiers

maven-shared-incremental-1.1.jar

Description:  Various utility classes and plexus components for supporting incremental build functionality in maven plugins.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-shared-incremental\1.1\maven-shared-incremental-1.1.jar
MD5: 8A48E08AA027A7AC33FCC85054512021
SHA1: 9D017A7584086755445C0A260DD9A1E9EAE161A5

Identifiers

maven-shared-io-1.1.jar

Description: API for I/O support like logging, download or file scanning.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-shared-io\1.1\maven-shared-io-1.1.jar
MD5: FE668F50B2C0EDC8707609F792CA4036
SHA1: 02E1D57BE05ECAC7DBE56A3C73B113E98F22240F

Identifiers

maven-shared-jar-1.1.jar

Description:  Utilities that help identify the contents of a JAR, including Java class analysis and Maven metadata analysis.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-shared-jar\1.1\maven-shared-jar-1.1.jar
MD5: 67DD345E21509E2F32A90448D85B791E
SHA1: BA7D4068AAD3153E2BE5AC9D445057CC1F9E4069

Identifiers

maven-shared-utils-0.7.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-shared-utils\0.7\maven-shared-utils-0.7.jar
MD5: 96BA4884A1C007E9C88CBC300FDADA45
SHA1: 0704E679088765E7DF5E1EF3EEF400C4A061C9EF

Identifiers

maven-surefire-common-2.18.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\surefire\maven-surefire-common\2.18.1\maven-surefire-common-2.18.1.jar
MD5: 4D733B6DCF2E35A76B887C28B011B507
SHA1: 9FFF3EE116243C395AA42C9139499D6FE4AE7994

Identifiers

maven-surefire-common-2.18.1.jar\META-INF/maven/org.apache.maven.shared/maven-common-artifact-filters/pom.xml

Description: A collection of ready-made filters to control inclusion/exclusion of artifacts during dependency resolution.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\surefire\maven-surefire-common\2.18.1\maven-surefire-common-2.18.1.jar\META-INF/maven/org.apache.maven.shared/maven-common-artifact-filters/pom.xml
MD5: 7995D42A1B25069605608ED5958DB95B
SHA1: E28CE2F08D032AE25C83B9BDE56DF51E3420D6FF

Identifiers

  • maven: org.apache.maven.shared:maven-common-artifact-filters:1.3   Confidence:LOW

maven-surefire-common-2.18.1.jar\META-INF/maven/org.apache.maven.shared/maven-shared-utils/pom.xml

Description: Shared utils without any further dependencies

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\surefire\maven-surefire-common\2.18.1\maven-surefire-common-2.18.1.jar\META-INF/maven/org.apache.maven.shared/maven-shared-utils/pom.xml
MD5: CA630CF6049557AB8D02FE8B514CE11C
SHA1: 86C6539DEBC641D1E5B6835363E19D373CF5403C

Identifiers

  • maven: org.apache.maven.shared:maven-shared-utils:0.4   Confidence:LOW

surefire-api-2.18.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\surefire\surefire-api\2.18.1\surefire-api-2.18.1.jar
MD5: 4513295E824B16CF6FDB7C99ABFD3CD1
SHA1: 7838E4F65460DDDE64BF818BEBFADE0B1C630DE6

Identifiers

surefire-booter-2.18.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\surefire\surefire-booter\2.18.1\surefire-booter-2.18.1.jar
MD5: 9629E1D43834645E4639FA6AD1DCD020
SHA1: 0EB85FE5A28CB9FD6BF9381DC95A45F7ACAB6B9C

Identifiers

surefire-report-parser-2.18.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\surefire\surefire-report-parser\2.18.1\surefire-report-parser-2.18.1.jar
MD5: E6224CC26DB98531B78751340AF76EC4
SHA1: 40E05585E401E1905769E2E575B50C021B170849

Identifiers

wagon-file-2.7.jar

Description:  Wagon provider that gets and puts artifacts using file system protocol

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-file\2.7\wagon-file-2.7.jar
MD5: 03CEDD9762DFD09B7BA73A46B34AFF6C
SHA1: CB6ACC07E78040882F3098B614F9C9F84475F770

Identifiers

wagon-http-lightweight-2.7.jar

Description:  Wagon provider that gets and puts artifacts through http using standard Java library

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-http-lightweight\2.7\wagon-http-lightweight-2.7.jar
MD5: 267E72A756B70A01D88BB765719CBE70
SHA1: 5041B265F51B977E5E91F49F8DA97A6093B3853C

Identifiers

wagon-http-shared-2.7.jar

Description:  Shared Library for wagon providers supporting HTTP.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-http-shared\2.7\wagon-http-shared-2.7.jar
MD5: 695F9A310CB52F4BE563CA1B590CDF84
SHA1: 01BC428F7A784DFB21F1F17B6A439A0D7D972E38

Identifiers

wagon-http-1.0-beta-6.jar

Description:  Wagon that gets and puts artifacts through http using Apache commons-httpclient

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-http\1.0-beta-6\wagon-http-1.0-beta-6.jar
MD5: CACDB02E0D797E60306DBFE298814F9F
SHA1: 8C665CBB0AB67C355FBD2C942AD26E39753B6F2E

Identifiers

wagon-provider-api-1.0-beta-6.jar

Description: Maven Wagon API that defines the contract between different Wagon implementations

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-provider-api\1.0-beta-6\wagon-provider-api-1.0-beta-6.jar
MD5: 63826E38E44F08E7935C1D173667ED8C
SHA1: 3F952E0282AE77AE59851D96BB18015E520B6208

Identifiers

wagon-ssh-common-2.7.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-ssh-common\2.7\wagon-ssh-common-2.7.jar
MD5: 91F72ED89CCF9D532E03EB37BD3BCDE8
SHA1: 34A2434480011491513F15B8BB5FACC1AAFACB84

Identifiers

wagon-ssh-external-1.0-beta-6.jar

Description:  Wagon that gets and puts artifacts using SSH protocol with a preinstalled SSH client

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-ssh-external\1.0-beta-6\wagon-ssh-external-1.0-beta-6.jar
MD5: 729534F8ECEF194BAB3B5BD23AFDB123
SHA1: 76918505C5FA6E309CD393ACA8ACD1B236559288

Identifiers

wagon-ssh-2.7.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-ssh\2.7\wagon-ssh-2.7.jar
MD5: 695A1AA241CA4C56893F04FB3F96028C
SHA1: F1CBEE4854B4C3BD72FEF2DDB573F3E4E6EDF152

Identifiers

wagon-webdav-jackrabbit-1.0-beta-6.jar

Description:  Wagon that gets and puts artifacts through webdav protocol

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\wagon\wagon-webdav-jackrabbit\1.0-beta-6\wagon-webdav-jackrabbit-1.0-beta-6.jar
MD5: 54E5811336DAB214BD598B4AC92CDF99
SHA1: B694B223D0F19ABCB32E304EBD5054061EE0F7B5

Identifiers

struts-core-1.3.8.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\struts\struts-core\1.3.8\struts-core-1.3.8.jar
MD5: 868DE456B4D4331D6DCC4E8D3BEE884E
SHA1: 66178D4A9279EBB1CD1EB79C10DC204B4199F061

Identifiers

CVE-2014-0114  

Severity: High
CVSS Score: 7.5
CWE: CWE-20 Improper Input Validation

Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the ActionForm object in Struts 1.

Vulnerable Software & Versions: (show all)

CVE-2008-6504  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-20 Improper Input Validation

ParametersInterceptor in OpenSymphony XWork 2.0.x before 2.0.6 and 2.1.x before 2.1.2, as used in Apache Struts and other products, does not properly restrict # (pound sign) references to context objects, which allows remote attackers to execute Object-Graph Navigation Language (OGNL) statements and modify server-side context objects, as demonstrated by use of a \u0023 representation for the # character.

Vulnerable Software & Versions: (show all)

struts-tiles-1.3.8.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\struts\struts-tiles\1.3.8\struts-tiles-1.3.8.jar
MD5: F41992AB2729B1CB9C6B4721465AA4E4
SHA1: 6D212F8EA5D908BC9906E669428B7694DFF60785

Identifiers

CVE-2014-0114  

Severity: High
CVSS Score: 7.5
CWE: CWE-20 Improper Input Validation

Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the ActionForm object in Struts 1.

Vulnerable Software & Versions: (show all)

CVE-2008-6504  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-20 Improper Input Validation

ParametersInterceptor in OpenSymphony XWork 2.0.x before 2.0.6 and 2.1.x before 2.1.2, as used in Apache Struts and other products, does not properly restrict # (pound sign) references to context objects, which allows remote attackers to execute Object-Graph Navigation Language (OGNL) statements and modify server-side context objects, as demonstrated by use of a \u0023 representation for the # character.

Vulnerable Software & Versions: (show all)

tomcat-embed-core-7.0.47.jar

Description: Core Tomcat implementation

File Path: C:\Users\Jeremy\.m2\repository\org\apache\tomcat\embed\tomcat-embed-core\7.0.47\tomcat-embed-core-7.0.47.jar
MD5: 38F021E74EC1B7E1220E029983645A39
SHA1: 90A3592062ED93565AB0CFA6905F4D03E5A29DFB

Identifiers

CVE-2014-0119  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-264 Permissions, Privileges, and Access Controls

Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attackers to (1) read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, or (2) read files associated with different web applications on a single Tomcat instance via a crafted web application.

Vulnerable Software & Versions: (show all)

CVE-2014-0099  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-189 Numeric Errors

Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP header.

Vulnerable Software & Versions: (show all)

CVE-2014-0096  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-264 Permissions, Privileges, and Access Controls

java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which allows remote attackers to bypass security-manager restrictions and read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Vulnerable Software & Versions: (show all)

CVE-2014-0075  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-189 Numeric Errors

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Vulnerable Software & Versions: (show all)

CVE-2014-0050  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-264 Permissions, Privileges, and Access Controls

MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's intended exit conditions.

Vulnerable Software & Versions: (show all)

CVE-2013-2185  

Severity: High
CVSS Score: 7.5
CWE: CWE-20 Improper Input Validation

** DISPUTED ** The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enterprise Application Platform 6.1.0 and Red Hat JBoss Portal 6.0.0, allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance, a similar issue to CVE-2013-2186. NOTE: this issue is reportedly disputed by the Apache Tomcat team, although Red Hat considers it a vulnerability. The dispute appears to regard whether it is the responsibility of applications to avoid providing untrusted data to be deserialized, or whether this class should inherently protect against this issue.

Vulnerable Software & Versions: (show all)

CVE-2013-0346  

Severity: Low
CVSS Score: 2.1
CWE: CWE-264 Permissions, Privileges, and Access Controls

** DISPUTED ** Apache Tomcat 7.x uses world-readable permissions for the log directory and its files, which might allow local users to obtain sensitive information by reading a file. NOTE: One Tomcat distributor has stated "The tomcat log directory does not contain any sensitive information."

Vulnerable Software & Versions: (show all)

CVE-2009-2696  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat on Red Hat Enterprise Linux 5, Desktop Workstation 5, and Linux Desktop 5 allows remote attackers to inject arbitrary web script or HTML via the time parameter, related to "invalid HTML." NOTE: this is due to a missing fix for CVE-2009-0781.

Vulnerable Software & Versions:

CVE-2007-5461  

Severity: Low
CVSS Score: 3.5
CWE: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.

Vulnerable Software & Versions:

CVE-2002-0493  

Severity: High
CVSS Score: 7.5

Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, which could allow attackers to bypass intended restrictions.

Vulnerable Software & Versions:

tomcat-embed-logging-log4j-7.0.47.jar

Description: log4j logging implementation for embedded Tomcat

File Path: C:\Users\Jeremy\.m2\repository\org\apache\tomcat\embed\tomcat-embed-logging-log4j\7.0.47\tomcat-embed-logging-log4j-7.0.47.jar
MD5: 06BF2270016BBDB81A17A38EA02F44A0
SHA1: 62CDF85DD72A34F4269188AB8CD7F873AA65273A

Identifiers

common-tomcat-maven-plugin-2.2.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\tomcat\maven\common-tomcat-maven-plugin\2.2\common-tomcat-maven-plugin-2.2.jar
MD5: 9E11F13EA30BB52D4273F3D299932A84
SHA1: 3ABE5D3F487698DE1039B1A8999A1A2569C017EA

Identifiers

CVE-2014-0119  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-264 Permissions, Privileges, and Access Controls

Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attackers to (1) read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, or (2) read files associated with different web applications on a single Tomcat instance via a crafted web application.

Vulnerable Software & Versions: (show all)

CVE-2014-0099  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-189 Numeric Errors

Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP header.

Vulnerable Software & Versions: (show all)

CVE-2014-0096  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-264 Permissions, Privileges, and Access Controls

java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which allows remote attackers to bypass security-manager restrictions and read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Vulnerable Software & Versions: (show all)

CVE-2014-0075  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-189 Numeric Errors

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Vulnerable Software & Versions: (show all)

CVE-2013-6357  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-352

** DISPUTED ** Cross-site request forgery (CSRF) vulnerability in the Manager application in Apache Tomcat 5.5.25 and earlier allows remote attackers to hijack the authentication of administrators for requests that manipulate application deployment via the POST method, as demonstrated by a /manager/html/undeploy?path= URI. NOTE: the vendor disputes the significance of this report, stating that "the Apache Tomcat Security team has not accepted any reports of CSRF attacks against the Manager application ... as they require a reckless system administrator."

Vulnerable Software & Versions: (show all)

CVE-2013-4590  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-200 Information Exposure

Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 allows attackers to obtain "Tomcat internals" information by leveraging the presence of an untrusted web application with a context.xml, web.xml, *.jspx, *.tagx, or *.tld XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Vulnerable Software & Versions: (show all)

CVE-2013-4444  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-94 Improper Control of Generation of Code ('Code Injection')

Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execute arbitrary code by uploading and accessing a JSP file.

Vulnerable Software & Versions: (show all)

CVE-2013-4322  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-20 Improper Input Validation

Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 processes chunked transfer coding without properly handling (1) a large total amount of chunked data or (2) whitespace characters in an HTTP header value within a trailer field, which allows remote attackers to cause a denial of service by streaming data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3544.

Vulnerable Software & Versions: (show all)

CVE-2013-4286  

Severity: Medium
CVSS Score: 5.8
CWE: CWE-20 Improper Input Validation

Apache Tomcat before 6.0.39, 7.x before 7.0.47, and 8.x before 8.0.0-RC3, when an HTTP connector or AJP connector is used, does not properly handle certain inconsistent HTTP request headers, which allows remote attackers to trigger incorrect identification of a request's length and conduct request-smuggling attacks via (1) multiple Content-Length headers or (2) a Content-Length header and a "Transfer-Encoding: chunked" header. NOTE: this vulnerability exists because of an incomplete fix for CVE-2005-2090.

Vulnerable Software & Versions: (show all)

CVE-2013-2185  

Severity: High
CVSS Score: 7.5
CWE: CWE-20 Improper Input Validation

** DISPUTED ** The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enterprise Application Platform 6.1.0 and Red Hat JBoss Portal 6.0.0, allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance, a similar issue to CVE-2013-2186. NOTE: this issue is reportedly disputed by the Apache Tomcat team, although Red Hat considers it a vulnerability. The dispute appears to regard whether it is the responsibility of applications to avoid providing untrusted data to be deserialized, or whether this class should inherently protect against this issue.

Vulnerable Software & Versions: (show all)

CVE-2012-5568  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-16 Configuration

Apache Tomcat through 7.0.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris.

Vulnerable Software & Versions: (show all)

CVE-2009-2696  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat on Red Hat Enterprise Linux 5, Desktop Workstation 5, and Linux Desktop 5 allows remote attackers to inject arbitrary web script or HTML via the time parameter, related to "invalid HTML." NOTE: this is due to a missing fix for CVE-2009-0781.

Vulnerable Software & Versions:

CVE-2008-0128  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-16 Configuration

The SingleSignOn Valve (org.apache.catalina.authenticator.SingleSignOn) in Apache Tomcat before 5.5.21 does not set the secure flag for the JSESSIONIDSSO cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.

Vulnerable Software & Versions:

CVE-2007-5461  

Severity: Low
CVSS Score: 3.5
CWE: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.

Vulnerable Software & Versions:

CVE-2007-2449  

Severity: Medium
CVSS Score: 4.3

Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.

Vulnerable Software & Versions: (show all)

CVE-2007-1358  

Severity: Low
CVSS Score: 2.6
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in certain applications using Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.34 allows remote attackers to inject arbitrary web script or HTML via crafted "Accept-Language headers that do not conform to RFC 2616".

Vulnerable Software & Versions: (show all)

CVE-2007-0450  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a .. (dot dot) sequence with combinations of (1) "/" (slash), (2) "\" (backslash), and (3) URL-encoded backslash (%5C) characters in the URL, which are valid separators in Tomcat but not in Apache.

Vulnerable Software & Versions: (show all)

CVE-2006-7196  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in the calendar application example in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.15 allows remote attackers to inject arbitrary web script or HTML via the time parameter to cal2.jsp and possibly unspecified other vectors. NOTE: this may be related to CVE-2006-0254.1.

Vulnerable Software & Versions: (show all)

CVE-2005-4838  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Multiple cross-site scripting (XSS) vulnerabilities in the example web applications for Jakarta Tomcat 5.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) el/functions.jsp, (2) el/implicit-objects.jsp, and (3) jspx/textRotate.jspx in examples/jsp2/, as demonstrated via script in a request to snp/snoop.jsp. NOTE: other XSS issues in the manager were simultaneously reported, but these require admin access and do not cross privilege boundaries.

Vulnerable Software & Versions:

CVE-2002-0493  

Severity: High
CVSS Score: 7.5

Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, which could allow attackers to bypass intended restrictions.

Vulnerable Software & Versions:

CVE-2001-0590  

Severity: Medium
CVSS Score: 5.0

Apache Software Foundation Tomcat Servlet prior to 3.2.2 allows a remote attacker to read the source code to arbitrary 'jsp' files via a malformed URL request which does not end with an HTTP protocol specification (i.e. HTTP/1.0).

Vulnerable Software & Versions:

CVE-2000-1210  

Severity: Medium
CVSS Score: 5.0

Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp.

Vulnerable Software & Versions:

tomcat7-war-runner-2.2.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\tomcat\maven\tomcat7-war-runner\2.2\tomcat7-war-runner-2.2.jar
MD5: 75CF811178A5D6C52F515C07B5DEEDA6
SHA1: C183B7947E496E6A283001020AEFB4BA9D86FE6E

Identifiers

CVE-2014-0119  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-264 Permissions, Privileges, and Access Controls

Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attackers to (1) read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, or (2) read files associated with different web applications on a single Tomcat instance via a crafted web application.

Vulnerable Software & Versions: (show all)

CVE-2014-0099  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-189 Numeric Errors

Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP header.

Vulnerable Software & Versions: (show all)

CVE-2014-0096  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-264 Permissions, Privileges, and Access Controls

java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which allows remote attackers to bypass security-manager restrictions and read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Vulnerable Software & Versions: (show all)

CVE-2014-0075  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-189 Numeric Errors

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Vulnerable Software & Versions: (show all)

CVE-2013-6357  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-352

** DISPUTED ** Cross-site request forgery (CSRF) vulnerability in the Manager application in Apache Tomcat 5.5.25 and earlier allows remote attackers to hijack the authentication of administrators for requests that manipulate application deployment via the POST method, as demonstrated by a /manager/html/undeploy?path= URI. NOTE: the vendor disputes the significance of this report, stating that "the Apache Tomcat Security team has not accepted any reports of CSRF attacks against the Manager application ... as they require a reckless system administrator."

Vulnerable Software & Versions: (show all)

CVE-2013-4590  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-200 Information Exposure

Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 allows attackers to obtain "Tomcat internals" information by leveraging the presence of an untrusted web application with a context.xml, web.xml, *.jspx, *.tagx, or *.tld XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Vulnerable Software & Versions: (show all)

CVE-2013-4444  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-94 Improper Control of Generation of Code ('Code Injection')

Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execute arbitrary code by uploading and accessing a JSP file.

Vulnerable Software & Versions: (show all)

CVE-2013-4322  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-20 Improper Input Validation

Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 processes chunked transfer coding without properly handling (1) a large total amount of chunked data or (2) whitespace characters in an HTTP header value within a trailer field, which allows remote attackers to cause a denial of service by streaming data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3544.

Vulnerable Software & Versions: (show all)

CVE-2013-4286  

Severity: Medium
CVSS Score: 5.8
CWE: CWE-20 Improper Input Validation

Apache Tomcat before 6.0.39, 7.x before 7.0.47, and 8.x before 8.0.0-RC3, when an HTTP connector or AJP connector is used, does not properly handle certain inconsistent HTTP request headers, which allows remote attackers to trigger incorrect identification of a request's length and conduct request-smuggling attacks via (1) multiple Content-Length headers or (2) a Content-Length header and a "Transfer-Encoding: chunked" header. NOTE: this vulnerability exists because of an incomplete fix for CVE-2005-2090.

Vulnerable Software & Versions: (show all)

CVE-2013-2185  

Severity: High
CVSS Score: 7.5
CWE: CWE-20 Improper Input Validation

** DISPUTED ** The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enterprise Application Platform 6.1.0 and Red Hat JBoss Portal 6.0.0, allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance, a similar issue to CVE-2013-2186. NOTE: this issue is reportedly disputed by the Apache Tomcat team, although Red Hat considers it a vulnerability. The dispute appears to regard whether it is the responsibility of applications to avoid providing untrusted data to be deserialized, or whether this class should inherently protect against this issue.

Vulnerable Software & Versions: (show all)

CVE-2012-5568  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-16 Configuration

Apache Tomcat through 7.0.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris.

Vulnerable Software & Versions: (show all)

CVE-2009-2696  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat on Red Hat Enterprise Linux 5, Desktop Workstation 5, and Linux Desktop 5 allows remote attackers to inject arbitrary web script or HTML via the time parameter, related to "invalid HTML." NOTE: this is due to a missing fix for CVE-2009-0781.

Vulnerable Software & Versions:

CVE-2008-0128  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-16 Configuration

The SingleSignOn Valve (org.apache.catalina.authenticator.SingleSignOn) in Apache Tomcat before 5.5.21 does not set the secure flag for the JSESSIONIDSSO cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.

Vulnerable Software & Versions:

CVE-2007-5461  

Severity: Low
CVSS Score: 3.5
CWE: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.

Vulnerable Software & Versions:

CVE-2007-2449  

Severity: Medium
CVSS Score: 4.3

Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.

Vulnerable Software & Versions: (show all)

CVE-2007-1358  

Severity: Low
CVSS Score: 2.6
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in certain applications using Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.34 allows remote attackers to inject arbitrary web script or HTML via crafted "Accept-Language headers that do not conform to RFC 2616".

Vulnerable Software & Versions: (show all)

CVE-2007-0450  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a .. (dot dot) sequence with combinations of (1) "/" (slash), (2) "\" (backslash), and (3) URL-encoded backslash (%5C) characters in the URL, which are valid separators in Tomcat but not in Apache.

Vulnerable Software & Versions: (show all)

CVE-2006-7196  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in the calendar application example in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.15 allows remote attackers to inject arbitrary web script or HTML via the time parameter to cal2.jsp and possibly unspecified other vectors. NOTE: this may be related to CVE-2006-0254.1.

Vulnerable Software & Versions: (show all)

CVE-2005-4838  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Multiple cross-site scripting (XSS) vulnerabilities in the example web applications for Jakarta Tomcat 5.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) el/functions.jsp, (2) el/implicit-objects.jsp, and (3) jspx/textRotate.jspx in examples/jsp2/, as demonstrated via script in a request to snp/snoop.jsp. NOTE: other XSS issues in the manager were simultaneously reported, but these require admin access and do not cross privilege boundaries.

Vulnerable Software & Versions:

CVE-2002-0493  

Severity: High
CVSS Score: 7.5

Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, which could allow attackers to bypass intended restrictions.

Vulnerable Software & Versions:

CVE-2001-0590  

Severity: Medium
CVSS Score: 5.0

Apache Software Foundation Tomcat Servlet prior to 3.2.2 allows a remote attacker to read the source code to arbitrary 'jsp' files via a malformed URL request which does not end with an HTTP protocol specification (i.e. HTTP/1.0).

Vulnerable Software & Versions:

CVE-2000-1210  

Severity: Medium
CVSS Score: 5.0

Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp.

Vulnerable Software & Versions:

tomcat-el-api-7.0.47.jar

Description: Expression language package

File Path: C:\Users\Jeremy\.m2\repository\org\apache\tomcat\tomcat-el-api\7.0.47\tomcat-el-api-7.0.47.jar
MD5: 3494DF7DB6850E6FBA2DD1BB34BDA56E
SHA1: E4ED09B8BAEC591475F570D4F84FF29733A61F97

Identifiers

CVE-2014-0119  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-264 Permissions, Privileges, and Access Controls

Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attackers to (1) read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, or (2) read files associated with different web applications on a single Tomcat instance via a crafted web application.

Vulnerable Software & Versions: (show all)

CVE-2014-0099  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-189 Numeric Errors

Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP header.

Vulnerable Software & Versions: (show all)

CVE-2014-0096  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-264 Permissions, Privileges, and Access Controls

java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which allows remote attackers to bypass security-manager restrictions and read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Vulnerable Software & Versions: (show all)

CVE-2014-0075  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-189 Numeric Errors

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Vulnerable Software & Versions: (show all)

CVE-2014-0050  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-264 Permissions, Privileges, and Access Controls

MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's intended exit conditions.

Vulnerable Software & Versions: (show all)

CVE-2013-2185  

Severity: High
CVSS Score: 7.5
CWE: CWE-20 Improper Input Validation

** DISPUTED ** The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enterprise Application Platform 6.1.0 and Red Hat JBoss Portal 6.0.0, allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance, a similar issue to CVE-2013-2186. NOTE: this issue is reportedly disputed by the Apache Tomcat team, although Red Hat considers it a vulnerability. The dispute appears to regard whether it is the responsibility of applications to avoid providing untrusted data to be deserialized, or whether this class should inherently protect against this issue.

Vulnerable Software & Versions: (show all)

CVE-2013-0346  

Severity: Low
CVSS Score: 2.1
CWE: CWE-264 Permissions, Privileges, and Access Controls

** DISPUTED ** Apache Tomcat 7.x uses world-readable permissions for the log directory and its files, which might allow local users to obtain sensitive information by reading a file. NOTE: One Tomcat distributor has stated "The tomcat log directory does not contain any sensitive information."

Vulnerable Software & Versions: (show all)

CVE-2009-2696  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat on Red Hat Enterprise Linux 5, Desktop Workstation 5, and Linux Desktop 5 allows remote attackers to inject arbitrary web script or HTML via the time parameter, related to "invalid HTML." NOTE: this is due to a missing fix for CVE-2009-0781.

Vulnerable Software & Versions:

CVE-2007-5461  

Severity: Low
CVSS Score: 3.5
CWE: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.

Vulnerable Software & Versions:

CVE-2002-0493  

Severity: High
CVSS Score: 7.5

Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, which could allow attackers to bypass intended restrictions.

Vulnerable Software & Versions:

velocity-tools-2.0.jar

Description:  VelocityTools is an integrated collection of Velocity subprojects with the common goal of creating tools and infrastructure to speed and ease development of both web and non-web applications using the Velocity template engine.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\velocity\velocity-tools\2.0\velocity-tools-2.0.jar
MD5: 51ED2C6C0103CF3FDBEB9AA5170F5288
SHA1: 69936384DE86857018B023A8C56AE0635C56B6A0

Identifiers

velocity-1.5.jar

Description: Apache Velocity is a general purpose template engine.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\velocity\velocity\1.5\velocity-1.5.jar
MD5: 8D46D30A37E1CF2047CDFA73C552E8A9
SHA1: 09F306BAF7523FFC0E81A6353D08A584D254133B

Identifiers

bsh-2.0b4.jar

Description: BeanShell

File Path: C:\Users\Jeremy\.m2\repository\org\beanshell\bsh\2.0b4\bsh-2.0b4.jar
MD5: A1C60AA83C9C9A6CB2391C1C1B85EB00
SHA1: A05F0A0FEEFA8D8467AC80E16E7DE071489F0D9C

Identifiers

gmaven-feature-api-1.4.jar

Description:  Feature discovery API.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\gmaven\feature\gmaven-feature-api\1.4\gmaven-feature-api-1.4.jar
MD5: 8C4389691DF05C2B2841E15AE1F79C95
SHA1: B4107140E049D0CD67B7C333D1A5EEA1653BC0BC

Identifiers

gmaven-feature-support-1.4.jar

Description:  Provides support for feature discovery.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\gmaven\feature\gmaven-feature-support\1.4\gmaven-feature-support-1.4.jar
MD5: 2ECF8F0D9961F0CFD0DC88A84E9714DD
SHA1: C910ADD82C1FBD4D25A101538239CE8364F79063

Identifiers

gmaven-mojo-1.4.jar

Description:  Provides support for implementing Maven 2 plugins in Groovy.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\gmaven\gmaven-mojo\1.4\gmaven-mojo-1.4.jar
MD5: AA8748DA9A663D848EBF1ECFF900824F
SHA1: CB509864DE4B3ECD8B1D67261DF1E3ADAD54D945

Identifiers

gmaven-plugin-1.4.jar

Description:  Provides support for execution, compilation and other facets of Groovy development.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\gmaven\gmaven-plugin\1.4\gmaven-plugin-1.4.jar
MD5: C981AB217D106D111CE920152280C873
SHA1: 036286056D27951657DBF58C4124B9E43B76FA44

Identifiers

gmaven-runtime-1.5-1.4.jar

Description:  Support for Groovy 1.5.x.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\gmaven\runtime\gmaven-runtime-1.5\1.4\gmaven-runtime-1.5-1.4.jar
MD5: 527ACF647A10B6738E53EFAC4D8C5F88
SHA1: 6D4CD6D1FA1D4CDF22D8DA43347626CB7DA8CA86

Identifiers

gmaven-runtime-api-1.4.jar

Description:  Groovy runtime API.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\gmaven\runtime\gmaven-runtime-api\1.4\gmaven-runtime-api-1.4.jar
MD5: B20A81CBD244CF4874BF2412A701E173
SHA1: 605BCE312BD16596B7C8172BFFC1A68E3FE64DA1

Identifiers

gmaven-runtime-loader-1.4.jar

Description:  Groovy runtime loader.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\gmaven\runtime\gmaven-runtime-loader\1.4\gmaven-runtime-loader-1.4.jar
MD5: ABA5C8E1B33B575648EC81159366FA4B
SHA1: 8382DBAC609A1F0F690C741844819CB4B02FB676

Identifiers

gmaven-runtime-support-1.4.jar

Description:  Support for Groovy Runtime implementations.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\gmaven\runtime\gmaven-runtime-support\1.4\gmaven-runtime-support-1.4.jar
MD5: C46480D05FA44399CDAEFA2819BB411B
SHA1: BBD553FA9DACC71D072813480DA85570C75E4CB7

Identifiers

groovy-all-minimal-1.5.8.jar

Description:  Groovy: A powerful, dynamic language for the JVM

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\groovy\groovy-all-minimal\1.5.8\groovy-all-minimal-1.5.8.jar
MD5: F9D1409298F02E76148ACF2C2ACF9B5D
SHA1: CF8D95C0D9D4FD08B814C0EB5E32E0216CD07E0D

Identifiers

groovy-all-1.7.4.jar

Description:  Commons CLI provides a simple API for presenting, processing and validating a command line interface.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\groovy\groovy-all\1.7.4\groovy-all-1.7.4.jar
MD5: 9548C603235A4B8AA2E50A0DAB241261
SHA1: 54EBF39B7B76F736253FC14159C868BCECEF1D39

Identifiers

animal-sniffer-maven-plugin-1.13.jar

Description:  Animal Sniffer Maven Plugin.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\animal-sniffer-maven-plugin\1.13\animal-sniffer-maven-plugin-1.13.jar
MD5: 872B8306826A789DC080D8BE1932F860
SHA1: 9F745754A3A64134E9D3817997E70DF969E3E416

Identifiers

animal-sniffer-1.13.jar

Description:  Animal Sniffer.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\animal-sniffer\1.13\animal-sniffer-1.13.jar
MD5: 362B767AC3643718A972F84021F96E31
SHA1: 782B2119FA23DF9127666A2583E6EA7D638D3D9B

Identifiers

build-helper-maven-plugin-1.9.1.jar

Description: This plugin contains various small independent goals to assist with Maven build lifecycle

License:

The MIT License: http://www.opensource.org/licenses/mit-license.php
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\build-helper-maven-plugin\1.9.1\build-helper-maven-plugin-1.9.1.jar
MD5: B1D7C2503A6DCF0ED5BA14FADF2EB5DC
SHA1: F9E3A3CCFF56A9344202C1761ACB1D054C80357F

Identifiers

buildnumber-maven-plugin-1.3.jar

Description:  This plugin is designed to give you a build number. So when you might make 100 builds of version 1.0-SNAPSHOT, you can differentiate between them all.

License:

The MIT License: LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\buildnumber-maven-plugin\1.3\buildnumber-maven-plugin-1.3.jar
MD5: BF7ADC3FA20E58EDFE73CB5E332B3476
SHA1: A87082DCC28B7FF61412C3E59DAC2AE2748393A1

Identifiers

findbugs-maven-plugin-3.0.0.jar

Description: This Plug-In generates reports based on the FindBugs Library

License:

Apache 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\findbugs-maven-plugin\3.0.0\findbugs-maven-plugin-3.0.0.jar
MD5: 187BA6AA77C6398AA53FDAD488D864C3
SHA1: 2903860EF2477FC4944D5553B17613CFA9F9861C

Identifiers

java-boot-classpath-detector-1.13.jar

Description:  Queries a java home in order to find its boot class path.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\java-boot-classpath-detector\1.13\java-boot-classpath-detector-1.13.jar
MD5: D716CCD819D9A184EA4666FB8625C4C3
SHA1: 82E48332B3571AA8134235D50FABA9F4999631D5

Identifiers

jdepend-maven-plugin-2.0.jar

Description: Maven plugin that generates JDepend reports for your projects.

License:

Apache License 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\jdepend-maven-plugin\2.0\jdepend-maven-plugin-2.0.jar
MD5: 3295689216862DC4C3E41E68ED6F57DE
SHA1: C049BFAA27C610B19FBFC7DC42CCE53C6A88A1B0

Identifiers

sonar-maven-plugin-2.5.jar

Description: Analyze and report metrics on source code

License:

MIT License: http://www.opensource.org/licenses/mit-license.php
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\sonar-maven-plugin\2.5\sonar-maven-plugin-2.5.jar
MD5: 5AB3923034BEFE714C6566844B861D14
SHA1: C0EAE8C9F60D8509161A2554AF787FBD4F5C2C8D

Identifiers

taglist-maven-plugin-2.4.jar

Description: Produce a tag list report.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\taglist-maven-plugin\2.4\taglist-maven-plugin-2.4.jar
MD5: 7B17A15DB799FF9B6EEC475174336086
SHA1: 1BFF1EC23266B304B55F1A985711CA732465D0FB

Identifiers

tidy-maven-plugin-1.0-alpha-2.jar

Description:  Tidy Plugin for Maven. The Tidy plugin provides goals for tidying up your source code.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\tidy-maven-plugin\1.0-alpha-2\tidy-maven-plugin-1.0-alpha-2.jar
MD5: 3326948C54F68994307FA4C6A75C25EC
SHA1: C0F76A4C873A7194086AE19A4E8671FA283487E9

Identifiers

versions-maven-plugin-2.1.jar

Description:  Versions Plugin for Maven 2. The Versions Plugin updates the versions of components in the POM.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\versions-maven-plugin\2.1\versions-maven-plugin-2.1.jar
MD5: FBB997E2F16335F65377365FD1E45276
SHA1: 6403171668E80C03C8DC6E214C5DD132076A28B9

Identifiers

wagon-maven-plugin-1.0.jar

Description:  Maven plugin that can be used to access various operations on a given URL using a supported maven wagon. Supports recursive upload, download, and list directory content functionality.

License:

Apache License 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\mojo\wagon-maven-plugin\1.0\wagon-maven-plugin-1.0.jar
MD5: 834FC16F3B5A4F0AAF3B912BADC92A74
SHA1: E1A4B878A89391DDFBC2C423066C0D62999B4417

Identifiers

plexus-archiver-2.9.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-archiver\2.9.1\plexus-archiver-2.9.1.jar
MD5: 0FD1399EA9740596C25A626DD22B049B
SHA1: 091D480758076ED0A219DEABBFDB3A33358B2F2B

Identifiers

plexus-classworlds-2.2.2.jar

Description: A class loader framework

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-classworlds\2.2.2\plexus-classworlds-2.2.2.jar
MD5: A7D552779645C1F7368FDAEF3401C9CC
SHA1: 3A2BAD2B58C1CA765D3F471CEA8C1655D70FDFD9

Identifiers

plexus-compiler-api-2.4.jar

Description: Plexus Compilers component's API to manipulate compilers.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-compiler-api\2.4\plexus-compiler-api-2.4.jar
MD5: 6B2A059092CBA0EADC669DB9896739A4
SHA1: 7A6C9AFFE8C8C07846492416A9061A452DFF02E9

Identifiers

plexus-compiler-javac-2.4.jar

Description: Javac Compiler support for Plexus Compiler component.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-compiler-javac\2.4\plexus-compiler-javac-2.4.jar
MD5: 24B9012DA605CB316AD238725C82737F
SHA1: B3984FB5AF1D4FD8928A13522CE9458D3976DED8

Identifiers

plexus-compiler-manager-2.4.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-compiler-manager\2.4\plexus-compiler-manager-2.4.jar
MD5: 48AB1166FC8C7F96E9CCB5811855C2FB
SHA1: 4E83394EE95FD212C67502C52DB3951BFC9F7D3E

Identifiers

plexus-component-annotations-1.5.5.jar

Description:  Plexus Component "Java 5" Annotations, to describe plexus components properties in java sources with standard annotations instead of javadoc annotations.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-component-annotations\1.5.5\plexus-component-annotations-1.5.5.jar
MD5: EF37DCDB84030422DB428B63C4354E5B
SHA1: C72F2660D0CBED24246DDB55D7FDC4F7374D2078

Identifiers

plexus-container-default-1.0-alpha-9.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-container-default\1.0-alpha-9\plexus-container-default-1.0-alpha-9.jar
MD5: AB910F683A0B11C9CA7E0A95DD47F6A5
SHA1: 50596183CD7B688D9D7B6D868A0193CA1A8A7B3D

Identifiers

plexus-digest-1.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-digest\1.0\plexus-digest-1.0.jar
MD5: D068135769A92C23DACCBC722BA4658E
SHA1: 5F6A5A5140CD39E8C987CF6C31429D917B31166E

Identifiers

plexus-i18n-1.0-beta-7.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-i18n\1.0-beta-7\plexus-i18n-1.0-beta-7.jar
MD5: 65D4F673BD0C49DBC67E020E96B00753
SHA1: 3690F10A668B3C7AC2EF563F14CFB6B2BA30EE57

Identifiers

plexus-interactivity-api-1.0-alpha-4.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-interactivity-api\1.0-alpha-4\plexus-interactivity-api-1.0-alpha-4.jar
MD5: C8CE4CFD3B7B6419C00DCB780A6EB603
SHA1: 0A8F1178664A5457EEF3F4531EB62F9505E1295F

Identifiers

plexus-interpolation-1.22.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-interpolation\1.22\plexus-interpolation-1.22.jar
MD5: B129E421E0E7DFF2DF1B9769CA2968D5
SHA1: 1A3C07196AD64B0C5378EE1A2092FD72952E20BD

Identifiers

plexus-io-2.4.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-io\2.4.1\plexus-io-2.4.1.jar
MD5: 0A4E9CCFECE04D313CB69DEDD172216E
SHA1: 62996B2EF6BBA440CA126CD6B59212F97E64C4CA

Identifiers

plexus-resources-1.0-alpha-7.jar

Description: A component to transparently retrieve resources from the filesystem, classpath or internet.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-resources\1.0-alpha-7\plexus-resources-1.0-alpha-7.jar
MD5: 2FDB117F61BA5E67AF7475B57805E76C
SHA1: 5A847914BA6045EB265D0DBB4329413471858DED

Identifiers

plexus-utils-3.0.1.jar

Description: A collection of various utility classes to ease working with strings, files, command lines, XML and more.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-utils\3.0.1\plexus-utils-3.0.1.jar
MD5: CF747DC19D955A291A512DA1052957B5
SHA1: 06658663C32332061C039D7A88B3700B9A6661EE

Identifiers

plexus-velocity-1.1.8.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-velocity\1.1.8\plexus-velocity-1.1.8.jar
MD5: 39C87159CBB8CFAB726A0F4E94406421
SHA1: D6B34818C82CD2E2F7BC75A2852D31283D154291

Identifiers

sonar-runner-api-2.4.jar

License:

http://www.gnu.org/licenses/lgpl.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\sonar\runner\sonar-runner-api\2.4\sonar-runner-api-2.4.jar
MD5: 21E8B756FD548E15A77A6F03D280CD3F
SHA1: DDDCC02A0A686DA26608B0F1331A067D70A04DD5

Identifiers

sonar-runner-api-2.4.jar\META-INF/maven/com.github.kevinsawicki/http-request/pom.xml

Description: Library for making HTTP requests

License:

MIT License: http://www.opensource.org/licenses/mit-license.php
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\sonar\runner\sonar-runner-api\2.4\sonar-runner-api-2.4.jar\META-INF/maven/com.github.kevinsawicki/http-request/pom.xml
MD5: 4F665152369E6A76046C8B5A2D902C3D
SHA1: 2648E654BE4DFFC4ED569ECCDFECECE6176D3152

Identifiers

  • maven: com.github.kevinsawicki:http-request:4.1   Confidence:LOW

sonar-runner-api-2.4.jar\META-INF/maven/commons-io/commons-io/pom.xml

Description:  Commons-IO contains utility classes, stream implementations, file filters, file comparators and endian classes.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\sonar\runner\sonar-runner-api\2.4\sonar-runner-api-2.4.jar\META-INF/maven/commons-io/commons-io/pom.xml
MD5: DDA7E7373FA85EE2798FD76A4ACEDD4E
SHA1: 0E85782DE6E708D9B62C7C2FE46634933B431137

Identifiers

  • maven: commons-io:commons-io:2.0.1   Confidence:LOW

sonar-runner-api-2.4.jar\META-INF/maven/org.codehaus.sonar/sonar-home/pom.xml

Description: Access the user home directory that contains cache of files

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\sonar\runner\sonar-runner-api\2.4\sonar-runner-api-2.4.jar\META-INF/maven/org.codehaus.sonar/sonar-home/pom.xml
MD5: C690AE11427F8EE504E560C5A59DA996
SHA1: 1F549DAD9D0981B17E438D456AA06B61CD2D5226

Identifiers

  • maven: org.codehaus.sonar:sonar-home:3.5   Confidence:LOW

sonar-runner-api-2.4.jar: sonar-runner-batch.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\sonar\runner\sonar-runner-api\2.4\sonar-runner-api-2.4.jar\sonar-runner-batch.jar
MD5: A83EC851C8F9DEBF546B5A5E9C37B20F
SHA1: 24C4511D34774B124AA9A1E75F0F0F040B2DCB98

Identifiers

sonar-runner-api-2.4.jar: sonar-runner-impl.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\sonar\runner\sonar-runner-api\2.4\sonar-runner-api-2.4.jar\sonar-runner-impl.jar
MD5: 4BD52887CE2B173C8B5C45CDAAF4A05D
SHA1: A1E69B8CF8E9A2F479EE766E06E0B8B4865C13B3

Identifiers

wstx-asl-3.2.7.jar

Description: Woodstox is a high-performance XML processor that implements Stax (JSR-173) API

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\woodstox\wstx-asl\3.2.7\wstx-asl-3.2.7.jar
MD5: 5CA667E626A1B2F3E5522CB431370CC6
SHA1: 252C7FAAE9CE98CB9C9D29F02DB88F7373E7F407

Identifiers

aether-util-0.9.0.M2.jar

Description:  A collection of utility classes to ease usage of the repository system.

License:

http://www.eclipse.org/legal/epl-v10.html
File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\aether\aether-util\0.9.0.M2\aether-util-0.9.0.M2.jar
MD5: FC6315129D2E2063E2F2725E6337587F
SHA1: B957089DEB654647DA320AD7507B0A4B5CE23813

Identifiers

ecj-4.2.2.jar

Description: Eclipse JDT Core Batch Compiler

License:

Eclipse Public License v1.0: http://www.eclipse.org/org/documents/epl-v10.php
File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\jdt\core\compiler\ecj\4.2.2\ecj-4.2.2.jar
MD5: 04BC498FD6D5ACE9D4E303CDC9FA2199
SHA1: D9FD79499C664BCCAF24DBE04BE417DE6C6AF64A

Identifiers

org.eclipse.jgit-3.4.1.201406201815-r.jar

Description:  Repository access and algorithms

File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\jgit\org.eclipse.jgit\3.4.1.201406201815-r\org.eclipse.jgit-3.4.1.201406201815-r.jar
MD5: 3C5F5772D95CA0F2536D976CE4EB762F
SHA1: 7FE73A21F4A078ABAAFACE4D2B03B5EB3D306F63

Identifiers

CVE-2010-2542  

Severity: High
CVSS Score: 7.5
CWE: CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in the is_git_directory function in setup.c in Git before 1.7.2.1 allows local users to gain privileges via a long gitdir: field in a .git file in a working copy.

Vulnerable Software & Versions: (show all)

org.eclipse.sisu.inject-0.0.0.M2a.jar

License:

http://www.eclipse.org/legal/epl-v10.html
File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\sisu\org.eclipse.sisu.inject\0.0.0.M2a\org.eclipse.sisu.inject-0.0.0.M2a.jar
MD5: 6112D58A332B93E86B63AACC66200477
SHA1: 17941E32C751179A9628B25F54CE5641EDAFB9BE

Identifiers

org.eclipse.sisu.plexus-0.0.0.M2a.jar

File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\sisu\org.eclipse.sisu.plexus\0.0.0.M2a\org.eclipse.sisu.plexus-0.0.0.M2a.jar
MD5: AD12584CE30EDEACAB4A6C32F4AFD9B9
SHA1: 07510DC8DFE27A0B57C17601BC760B7B0C8F95FA

Identifiers

org.eclipse.jdt.core-3.8.1.v20120125-1544.jar

Description: This is org.eclipse.jdt.core jar used by Tycho

License:

Eclipse Public License: http://www.eclipse.org/legal/epl-v10.html
File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\tycho\org.eclipse.jdt.core\3.8.1.v20120125-1544\org.eclipse.jdt.core-3.8.1.v20120125-1544.jar
MD5: FF98C1B585F69E16F3EA250FBB9279C0
SHA1: 51A8F2C735C13EF424617B00559808F3D9B0E9BD

Identifiers

org.eclipse.jdt.core-3.8.1.v20120125-1544.jar: jdtCompilerAdapter.jar

File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\tycho\org.eclipse.jdt.core\3.8.1.v20120125-1544\org.eclipse.jdt.core-3.8.1.v20120125-1544.jar\jdtCompilerAdapter.jar
MD5: 0D8DD7C7F5871B997AB2DD1069589245
SHA1: DD99177698535A270E24C3366AFF3EFD46BB93D6

Identifiers

  • None

coveralls-maven-plugin-3.0.1.jar

Description: Maven plugin for submitting Java code coverage reports to Coveralls web service.

License:

The MIT License (MIT): http://opensource.org/licenses/MIT
File Path: C:\Users\Jeremy\.m2\repository\org\eluder\coveralls\coveralls-maven-plugin\3.0.1\coveralls-maven-plugin-3.0.1.jar
MD5: 2FFE5C3E1C212CAAD962B71000276B76
SHA1: 3907EE5CF1E5C85AF7BB90E486CE4C7B1408A552

Identifiers

webservices-api-2.3.1-b411.jar

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-api\2.3.1-b411\webservices-api-2.3.1-b411.jar
MD5: 114B3327AD412414A333CBBB616A51F9
SHA1: F7ED9152EBE9C5E5A0A5031AB4ABB229543195B0

Identifiers

webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.bind/jaxb-api/pom.xml

Description: JAXB (JSR 222) API

License:

CDDL 1.1: https://glassfish.java.net/public/CDDL+GPL_1_1.html
GPL2 w/ CPE: https://glassfish.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-api\2.3.1-b411\webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.bind/jaxb-api/pom.xml
MD5: B48EAED0F55AE3FF205E341EAC144C79
SHA1: A400FBD62FA68FAE267B5641C3E4BB740A0F7335

Identifiers

  • maven: javax.xml.bind:jaxb-api:2.2.12-b140109.1041   Confidence:LOW

webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.soap/javax.xml.soap-api/pom.xml

Description: SAAJ API

License:

CDDL 1.1: https://glassfish.java.net/public/CDDL+GPL_1_1.html
GPL2 w/ CPE: https://glassfish.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-api\2.3.1-b411\webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.soap/javax.xml.soap-api/pom.xml
MD5: FA3371091B2A95255D171748CAAAD22B
SHA1: C699C8FF479AEBDC1559CCE776AEB1445F62A8DA

Identifiers

  • maven: javax.xml.soap:javax.xml.soap-api:1.3.7   Confidence:LOW

webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.ws/jaxws-api/pom.xml

Description: JAX-WS (JSR 224) API

License:

                Dual license consisting of the CDDL v1.1 and GPL v2
            : http://glassfish.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-api\2.3.1-b411\webservices-api-2.3.1-b411.jar\META-INF/maven/javax.xml.ws/jaxws-api/pom.xml
MD5: 9BBEF9947ACB10298D04BB81C31254FB
SHA1: 8FEC43FCA36F1E5D5BDA8A42A55723718D5337B6

Identifiers

  • maven: javax.xml.ws:jaxws-api:2.2.11   Confidence:LOW

webservices-rt-2.3.1-b411.jar

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar
MD5: 5DAD60826516821AEDC549C03C5702DB
SHA1: FC604BA14AE0C6AABC50C454D81065DF83290755

Identifiers

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.istack/istack-commons-runtime/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.istack/istack-commons-runtime/pom.xml
MD5: CE35F206165AE70F66D16ADEF60AEAB3
SHA1: 647BE046BE1E9FBE2979A158BF39F8AEC8775E0E

Identifiers

  • maven: com.sun.istack:istack-commons-runtime:2.19   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-core/pom.xml

Description: Old JAXB Core module. Contains sources required by XJC, JXC and Runtime modules with dependencies.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-core/pom.xml
MD5: 2B198BA54A7DABAC4BC41C9CE4D9B952
SHA1: 9F8D2853AC3355036700468C60A73ABABC2C083A

Identifiers

  • maven: com.sun.xml.bind:jaxb-core:2.2.10-b140310.1920   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-impl/pom.xml

Description: Old JAXB Runtime module. Contains sources required for runtime processing.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-impl/pom.xml
MD5: 2DB62EB02F60B8A4EBA451AC20BDC54E
SHA1: 05430DD72AF2DDDA07592E6218D0A17289928E4C

Identifiers

  • maven: com.sun.xml.bind:jaxb-impl:2.2.10-b140310.1920   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.fastinfoset/FastInfoset/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.fastinfoset/FastInfoset/pom.xml
MD5: 6676B99D64695E696D16862A061E2D7E
SHA1: BC1AC953ADDB710EC08DCCA6465BB1F6FCFD7EE9

Identifiers

  • maven: com.sun.xml.fastinfoset:FastInfoset:1.2.13   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.messaging.saaj/saaj-impl/pom.xml

Description:  Open source Reference Implementation of JSR-67: SOAP with Attachments API for Java (SAAJ MR :1.3)

License:

            Dual license consisting of the CDDL v1.1 and GPL v2
            : http://glassfish.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.messaging.saaj/saaj-impl/pom.xml
MD5: E2CA442514D5B37B17CB90B73F490934
SHA1: 12A29E666EB7D116741F4797B87CFABFBDCC4A81

Identifiers

  • maven: com.sun.xml.messaging.saaj:saaj-impl:1.3.23   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.stream.buffer/streambuffer/pom.xml

Description: Stream based representation for XML infoset

License:

                Dual license consisting of the CDDL v1.1 and GPL v2
            : https://glassfish.dev.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.stream.buffer/streambuffer/pom.xml
MD5: 7E7A5FC8C1021B8074A349AA02C39D06
SHA1: 79737BA1CBB7EF49455DC1CD8FA14ABDD7ACE1DB

Identifiers

  • maven: com.sun.xml.stream.buffer:streambuffer:1.5.3   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/httpspi-servlet/pom.xml

Description: HTTP SPI for JAX-WS RI

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/httpspi-servlet/pom.xml
MD5: AD3B0CBCE1119A00645E449EB25C63DA
SHA1: 483BE1A8499CBAE1FBFB1ADBBBB14A428E539902

Identifiers

  • maven: com.sun.xml.ws:httpspi-servlet:2.2.10-b140319.1121   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/policy/pom.xml

Description: WS-Policy implementation for Project Metro

License:

Dual License: CDDL 1.0 and GPL V2 with Classpath Exception: http://glassfish.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/policy/pom.xml
MD5: 1C261B87B5831CCA0FA7EB779C5AEB22
SHA1: 0DB92F6B297C427FF9A7467611E60D952E1627E5

Identifiers

  • maven: com.sun.xml.ws:policy:2.4   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt-fi/pom.xml

Description: Fast Infoset Support for JAX-WS RI

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt-fi/pom.xml
MD5: 143536BDCD7C60DE567041E2CB11607D
SHA1: DFEEA959FF27831137D9D7AACC3618997698C43A

Identifiers

  • maven: com.sun.xml.ws:rt-fi:2.2.10-b140319.1121   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt-ha/pom.xml

Description: High Availability Support for JAX-WS RI

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt-ha/pom.xml
MD5: 8EFE5EB736FA8C20543D487E0EBA6C9A
SHA1: D65066035B4B3E717CBFE3CAD24E9CEA024150FE

Identifiers

  • maven: com.sun.xml.ws:rt-ha:2.2.10-b140319.1121   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt/pom.xml

Description: JAX-WS Reference Implementation Runtime

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/rt/pom.xml
MD5: 5009A170767A4589F1E3C7388E85670F
SHA1: 08D6FF5FE5BDD3054CD85789D9F95D7B96C160B7

Identifiers

  • maven: com.sun.xml.ws:rt:2.2.10-b140319.1121   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/servlet/pom.xml

Description: Servlet Support for JAX-WS RI

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/servlet/pom.xml
MD5: 5D0FEEADDE65AC448367EB7ECE8DE1C8
SHA1: ACC980DADFE3D4EEC4621CA1399C60CCFA64D99C

Identifiers

  • maven: com.sun.xml.ws:servlet:2.2.10-b140319.1121   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.external/management-api/pom.xml

Description: GlassFish Common APIs

License:

CDDL+GPL: https://glassfish.dev.java.net/public/CDDL+GPL.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.external/management-api/pom.xml
MD5: 5D238E4CB092D68C9D52D1E51340B676
SHA1: 6ABD3D6CB7C8AE992A7D6BA9CB612F365D5BF03F

Identifiers

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.ha/ha-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.ha/ha-api/pom.xml
MD5: 32795041A0091C606F8847D9F72497D2
SHA1: 81975880BA7B8EE1931900B0622069E6A06AAFAD

Identifiers

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-core/pom.xml

Description: JAXB Core module. Contains sources required by XJC, JXC and Runtime modules.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-core/pom.xml
MD5: EC6710C0A3546D953540990138DC48F7
SHA1: C686F3D8CF2778CBD16790F45E8E52C7AB7A97A0

Identifiers

  • maven: org.glassfish.jaxb:jaxb-core:2.2.10-b140310.1920   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-runtime/pom.xml

Description: JAXB (JSR 222) Reference Implementation

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-runtime/pom.xml
MD5: 24532D5EC1762C1687888967E3A6D6EA
SHA1: AB1369DA7A59397B8FD95BB3DF089A1CED2BE23F

Identifiers

  • maven: org.glassfish.jaxb:jaxb-runtime:2.2.10-b140310.1920   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/txw2/pom.xml

Description:  TXW is a library that allows you to write XML documents.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/txw2/pom.xml
MD5: 3B5D78FF4CFAE627CF8A2AEC500FBF2C
SHA1: 2D5D488186FD3E9C81F9E83255B9A8DB3A2B4D12

Identifiers

  • maven: org.glassfish.jaxb:txw2:2.2.10-b140310.1920   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-cm-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-cm-api/pom.xml
MD5: 956319E6A7BB4F2DFD99B62BDEDDB987
SHA1: 2A808E88D02F573CBD250498D447D260B31DC6BC

Identifiers

  • maven: org.glassfish.metro:metro-cm-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-cm-impl/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-cm-impl/pom.xml
MD5: 6D8A3C895977B32168EC44640D2A566A
SHA1: C9364B9C16300928C5CE552AF88446D929E9D78A

Identifiers

  • maven: org.glassfish.metro:metro-cm-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-commons/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-commons/pom.xml
MD5: B753885744BFC438EE3E623AC0701579
SHA1: C924A61EC458CEEEF3CF5FAF153821AA23702F49

Identifiers

  • maven: org.glassfish.metro:metro-commons:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-config-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-config-api/pom.xml
MD5: 19778177F1A6411BF5D2774BA3CF6AEB
SHA1: 3B0BBA5C440A50561FB78789617329C8F0765221

Identifiers

  • maven: org.glassfish.metro:metro-config-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-config-impl/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-config-impl/pom.xml
MD5: 40D7849B78121C9AE768D6DB61F0EFF2
SHA1: 9E9AE4F1A748369D9C10D3B5981E9F629E1DDC9E

Identifiers

  • maven: org.glassfish.metro:metro-config-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-runtime-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-runtime-api/pom.xml
MD5: 452CF07F83FFA41BCC8A13A9E43983BB
SHA1: B310A64D5EDDBB65F3B107D68C3552C55D2CA340

Identifiers

  • maven: org.glassfish.metro:metro-runtime-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-runtime-impl/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/metro-runtime-impl/pom.xml
MD5: B20AF5C6090823FA58D2ABAEB2C87065
SHA1: D32BD813010C4A3A5CD9C519823071589875F79E

Identifiers

  • maven: org.glassfish.metro:metro-runtime-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/soaptcp-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/soaptcp-api/pom.xml
MD5: 7EFF27173A34D50CF17D1D4E57F286FC
SHA1: BDA8557273BFD656E503E888B81F99EFAD9A0393

Identifiers

  • maven: org.glassfish.metro:soaptcp-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/soaptcp-impl/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/soaptcp-impl/pom.xml
MD5: 5CA70D15E20B94B777BAC3107C7D182F
SHA1: 99E5308F0A53A30B43C3EA3D9126A665BD227237

Identifiers

  • maven: org.glassfish.metro:soaptcp-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/ws-mex/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/ws-mex/pom.xml
MD5: CFD940600D2A0A92F5EB6C5C34651DA8
SHA1: A277F7AE6817402C6A4BAA7A70FBFE73DBD95E81

Identifiers

  • maven: org.glassfish.metro:ws-mex:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsit-api/pom.xml

Description:  This module contains the Metro WSIT API

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsit-api/pom.xml
MD5: A4BE22A6B1F32FCCA47CC729AE8ED6B9
SHA1: 69770A904D052F4689AAD3F5C92954ECC4B546B4

Identifiers

  • maven: org.glassfish.metro:wsit-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsit-impl/pom.xml

Description:  This module contains the Metro WSIT runtime code.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsit-impl/pom.xml
MD5: 79E47BAD3EB20E7B0821C1EDF505F6AD
SHA1: 72F9B97C266DC3E1014C51E59DF4406C1269713F

Identifiers

  • maven: org.glassfish.metro:wsit-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsmc-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsmc-api/pom.xml
MD5: DD62CA5000EF97878F0923DCBF1DAE3D
SHA1: 18F467A8EF1A51DD49A629003468784A690D57A1

Identifiers

  • maven: org.glassfish.metro:wsmc-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsmc-impl/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsmc-impl/pom.xml
MD5: 45AA405C9CEAED46DC600C74B8715D13
SHA1: F72F2F85E12034D61F8B05B804150955FF8B7EA8

Identifiers

  • maven: org.glassfish.metro:wsmc-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrm-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrm-api/pom.xml
MD5: 01E329716E5C0B90944BFD3CBCD22FAC
SHA1: 53ADA7A7D0657B49FFC2000447478400914325B6

Identifiers

  • maven: org.glassfish.metro:wsrm-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrm-impl/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrm-impl/pom.xml
MD5: F3DE43DFE0B031B58EFE6A78AF6F47F1
SHA1: A18DDBF951F21C94596D596094CEAEB7634E897A

Identifiers

  • maven: org.glassfish.metro:wsrm-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrx-commons/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrx-commons/pom.xml
MD5: 03DB693337AF36D35EF1C503B96997FC
SHA1: A48EA39B9AD8EDECF84BE3018789D8E1C072670D

Identifiers

  • maven: org.glassfish.metro:wsrx-commons:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrx-testing/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wsrx-testing/pom.xml
MD5: EFCCC3327F0DE1105BE8BCA484F27C8D
SHA1: 5253207AA1DB41E17B64579438484DC53D74A084

Identifiers

  • maven: org.glassfish.metro:wsrx-testing:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wssx-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wssx-api/pom.xml
MD5: 3F7578638CA08F2C47A2603C7D16CA16
SHA1: D11FADA568D63345819DF6ABBCDE6637071B736A

Identifiers

  • maven: org.glassfish.metro:wssx-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wssx-impl/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wssx-impl/pom.xml
MD5: E703DCDBC0DEAD2F95CD5BE04703A0DA
SHA1: 4B36B78389D1DCEFFC6DABA1BA06C6E49568C798

Identifiers

  • maven: org.glassfish.metro:wssx-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-api/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-api/pom.xml
MD5: F428B7CF92221CF8E69AF1CBE7105D53
SHA1: 065ADD068F1954355C6FB283A7B5409724D8BDF3

Identifiers

  • maven: org.glassfish.metro:wstx-api:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-core/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-core/pom.xml
MD5: 449AE4D7BAD31BB1460A8DFE9A912807
SHA1: E904ED82064122D9F377BF38BDAD4C7EF5C4449A

Identifiers

  • maven: org.glassfish.metro:wstx-core:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-impl/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/wstx-impl/pom.xml
MD5: 85860B4382D2C4083860C78FB477F35A
SHA1: 31C363B317DB2C87D743CE12F77A16C87C4F3CFC

Identifiers

  • maven: org.glassfish.metro:wstx-impl:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/xmlfilter/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.glassfish.metro/xmlfilter/pom.xml
MD5: CB4DB246C35D2B454AEA5B5DEFAF029B
SHA1: C0465CE2A7B418553E45D94BA63CE2293B8A3B70

Identifiers

  • maven: org.glassfish.metro:xmlfilter:2.3.1-b411   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.jvnet.mimepull/mimepull/pom.xml

Description:  Provides a streaming API to access attachments parts in a MIME message.

License:

CDDL 1.1: https://glassfish.java.net/public/CDDL+GPL_1_1.html
GPL2 w/ CPE: https://glassfish.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.jvnet.mimepull/mimepull/pom.xml
MD5: 15B76F3FA5F6A3A0ECC680F8F8ED3F51
SHA1: 0E2A7708D89D9D7D95D4B4B3CE92F5C06903F6CA

Identifiers

  • maven: org.jvnet.mimepull:mimepull:1.9.4   Confidence:LOW

webservices-rt-2.3.1-b411.jar\META-INF/maven/org.jvnet.staxex/stax-ex/pom.xml

Description: Extensions to JSR-173 StAX API.

License:

                Dual license consisting of the CDDL v1.1 and GPL v2
            : https://glassfish.dev.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-rt\2.3.1-b411\webservices-rt-2.3.1-b411.jar\META-INF/maven/org.jvnet.staxex/stax-ex/pom.xml
MD5: 8FCD75D4BBBFCA732FAD0C8ACA5A3A48
SHA1: 120E4070CB7B9A4A58B68E624A0AED193DDC5482

Identifiers

  • maven: org.jvnet.staxex:stax-ex:1.7.5   Confidence:LOW

webservices-tools-2.3.1-b411.jar

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar
MD5: 880086D7E3F451E010FA97055A1C963F
SHA1: CA5C51B576978544FFE54DA64F9E5835752FB6B8

Identifiers

webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.istack/istack-commons-tools/pom.xml

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.istack/istack-commons-tools/pom.xml
MD5: 0E312642FFC4FC2735BF2F007150B34E
SHA1: A76F27567D4E8B68540F4E7F4DA8479147FBC5FB

Identifiers

  • maven: com.sun.istack:istack-commons-tools:2.19   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind.external/rngom/pom.xml

Description:  RNGOM is a RelaxNG Object model library (XSOM for RelaxNG). Sources from http://rngom.java.net, version 20050510.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind.external/rngom/pom.xml
MD5: 566755E5079C3E6CE965F3C11BA0B303
SHA1: FB3C6E01C6BDC87D93629E80643ADA3D55E02579

Identifiers

  • maven: com.sun.xml.bind.external:rngom:2.2.10-b140310.1920   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-jxc/pom.xml

Description:  Old JAXB schema generator.The *tool* to generate XML schema based on java classes.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-jxc/pom.xml
MD5: 0B94EFC25B6F39249C8C96719BC7DEB4
SHA1: 0AE197896E2A6E92CC84353E1A4F5BE32F348C80

Identifiers

  • maven: com.sun.xml.bind:jaxb-jxc:2.2.10-b140310.1920   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-xjc/pom.xml

Description:  Old JAXB Binding Compiler. Contains source code needed for binding customization files into java sources. In other words: the *tool* to generate java classes for the given xml representation.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.bind/jaxb-xjc/pom.xml
MD5: 3FD6B181527DDE5CE09CCEA6AA9CF4B2
SHA1: 05ADC723B7A4DAB1BDDAFC1BF753B2F213F26A63

Identifiers

  • maven: com.sun.xml.bind:jaxb-xjc:2.2.10-b140310.1920   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.dtd-parser/dtd-parser/pom.xml

Description: SAX-like API for parsing XML DTDs.

License:

Berkeley Software Distribution (BSD) License: http://www.opensource.org/licenses/bsd-license.php
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.dtd-parser/dtd-parser/pom.xml
MD5: 4C0B08C7E7DC762B526C10165D91E657
SHA1: 76FD30B8E3D77A46336DAE71C69B73FD55018D7C

Identifiers

  • maven: com.sun.xml.dtd-parser:dtd-parser:1.1   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/wscompile/pom.xml

Description: JAX-WS RI Tools

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xml.ws/wscompile/pom.xml
MD5: 6480C53A0F3C563A8C41F0344D5087AD
SHA1: A775514A8028E3750E1E1831D5D62F5B933FB679

Identifiers

  • maven: com.sun.xml.ws:wscompile:2.2.10-b140319.1121   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xsom/xsom/pom.xml

Description: XML Schema Object Model (XSOM) is a Java library that allows applications to easily parse XML Schema documents and inspect information in them. It is expected to be useful for applications that need to take XML Schema as an input.

License:

CDDL v1.1 / GPL v2 dual license: http://glassfish.java.net/public/CDDL+GPL_1_1.html
File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/com.sun.xsom/xsom/pom.xml
MD5: E221E5709392BCF9E4FC9E7ED10D9706
SHA1: 8DEB5285CC7890E16DC854D91CE55D33A24F1B47

Identifiers

  • maven: com.sun.xsom:xsom:20130531   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/codemodel/pom.xml

Description: The core functionality of the CodeModel java source code generation library

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/codemodel/pom.xml
MD5: 6B6FEA7B39B5E24095047BF60ECFA67E
SHA1: FF50720390C6495F21AC9CE36DA11DAD17E685C2

Identifiers

  • maven: org.glassfish.jaxb:codemodel:2.2.10-b140310.1920   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-jxc/pom.xml

Description:  JAXB schema generator.The *tool* to generate XML schema based on java classes.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-jxc/pom.xml
MD5: 0C4DEF0E092F93876ECE5B49F055AF3A
SHA1: 843B8383E690F1ED6241292145FA1A36117EE865

Identifiers

  • maven: org.glassfish.jaxb:jaxb-jxc:2.2.10-b140310.1920   Confidence:LOW

webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-xjc/pom.xml

Description:  JAXB Binding Compiler. Contains source code needed for binding customization files into java sources. In other words: the *tool* to generate java classes for the given xml representation.

File Path: C:\Users\Jeremy\.m2\repository\org\glassfish\metro\webservices-tools\2.3.1-b411\webservices-tools-2.3.1-b411.jar\META-INF/maven/org.glassfish.jaxb/jaxb-xjc/pom.xml
MD5: AA5A96ECBB5D328967E4087E0D2CA730
SHA1: DB71FE800B013B667419EBE7DFC2AF8B398C3E59

Identifiers

  • maven: org.glassfish.jaxb:jaxb-xjc:2.2.10-b140310.1920   Confidence:LOW

hibernate-validator-annotation-processor-5.2.0.Alpha1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\hibernate\hibernate-validator-annotation-processor\5.2.0.Alpha1\hibernate-validator-annotation-processor-5.2.0.Alpha1.jar
MD5: B6E3A5210E1A9FBEDE75FF49199CF149
SHA1: 4387A7BDDB53000ED7E044A69788ED74FB1E3C64

Identifiers

jacoco-maven-plugin-0.7.2.201409121644.jar

Description: The JaCoCo Maven Plugin provides the JaCoCo runtime agent to your tests and allows basic report creation.

File Path: C:\Users\Jeremy\.m2\repository\org\jacoco\jacoco-maven-plugin\0.7.2.201409121644\jacoco-maven-plugin-0.7.2.201409121644.jar
MD5: D635CCC7210A98E976F7E65CFD1A1E57
SHA1: B2CB310459D082DB505FDFA66DBADD4D8BAC8E34

Identifiers

org.jacoco.agent-0.7.2.201409121644-runtime.jar

File Path: C:\Users\Jeremy\.m2\repository\org\jacoco\org.jacoco.agent\0.7.2.201409121644\org.jacoco.agent-0.7.2.201409121644-runtime.jar
MD5: 187311ABC55E0EAA5D1E62FC98EA6270
SHA1: 2A10D827753BC54F57108DCF320FA89DA0DE0C44

Identifiers

org.jacoco.agent-0.7.2.201409121644-runtime.jar\META-INF/maven/org.jacoco/org.jacoco.agent.rt/pom.xml

Description: JaCoCo Java Agent

File Path: C:\Users\Jeremy\.m2\repository\org\jacoco\org.jacoco.agent\0.7.2.201409121644\org.jacoco.agent-0.7.2.201409121644-runtime.jar\META-INF/maven/org.jacoco/org.jacoco.agent.rt/pom.xml
MD5: A718A89D7B6D065FEA465491DD211060
SHA1: 76D70BA5114F1E5A1CC48368A338166D77614F5A

Identifiers

  • maven: org.jacoco:org.jacoco.agent.rt:0.7.2.201409121644   Confidence:LOW

org.jacoco.core-0.7.2.201409121644.jar

Description: JaCoCo Core

File Path: C:\Users\Jeremy\.m2\repository\org\jacoco\org.jacoco.core\0.7.2.201409121644\org.jacoco.core-0.7.2.201409121644.jar
MD5: 83307B8CC646DB3C1BDD086B2D08DFFC
SHA1: 97747868597AF2C595A5CC4B34B95A689EF2D6C3

Identifiers

org.jacoco.report-0.7.2.201409121644.jar

Description: JaCoCo Reporting

File Path: C:\Users\Jeremy\.m2\repository\org\jacoco\org.jacoco.report\0.7.2.201409121644\org.jacoco.report-0.7.2.201409121644.jar
MD5: 80DD719A6A05220FD7901FC905ECC127
SHA1: 61F0DEDFB1D190BBEDFE2133EF188797A36473E5

Identifiers

jdom-1.1.jar

Description:  JDOM is, quite simply, a Java representation of an XML document. JDOM provides a way to represent that document for easy and efficient reading, manipulation, and writing. It has a straightforward API, is a lightweight and fast, and is optimized for the Java programmer. It's an alternative to DOM and SAX, although it integrates well with both DOM and SAX.

File Path: C:\Users\Jeremy\.m2\repository\org\jdom\jdom\1.1\jdom-1.1.jar
MD5: ADF67FC5DCF48E1593640AD7E02F6AD4
SHA1: 1D04C0F321EA337F3661CF7EDE8F4C6F653A8FDD

Identifiers

org.eclipse.core.resources-3.7.100.v20110510-0712.jar

Description: Eclipse org.eclipse.core.resources project

License:

Eclipse Public License: http://www.eclipse.org/legal/epl-v10.html
File Path: C:\Users\Jeremy\.m2\repository\org\jibx\config\3rdparty\org\eclipse\org.eclipse.core.resources\3.7.100.v20110510-0712\org.eclipse.core.resources-3.7.100.v20110510-0712.jar
MD5: 6A73FBC4153BFC16289D283BB501030B
SHA1: 06017D0579CD119CB06389B099EB983F9B986136

Identifiers

org.eclipse.core.resources-3.7.100.v20110510-0712.jar: resources-ant.jar

File Path: C:\Users\Jeremy\.m2\repository\org\jibx\config\3rdparty\org\eclipse\org.eclipse.core.resources\3.7.100.v20110510-0712\org.eclipse.core.resources-3.7.100.v20110510-0712.jar\ant_tasks\resources-ant.jar
MD5: 88DBE16FD892C5283E5CDE87A39E4FAA
SHA1: D1DD9AE4A7ECE17B230878726278A72BA0B2412D

Identifiers

  • None

org.eclipse.core.runtime-3.7.0.v20110110.jar

Description: Eclipse org.eclipse.core.runtime project

License:

Eclipse Public License: http://www.eclipse.org/legal/epl-v10.html
File Path: C:\Users\Jeremy\.m2\repository\org\jibx\config\3rdparty\org\eclipse\org.eclipse.core.runtime\3.7.0.v20110110\org.eclipse.core.runtime-3.7.0.v20110110.jar
MD5: C2C766E16DBB760BF8BB3D239F7D0111
SHA1: 8C8B2210214F0482F439B9BF5924742B64A0B00D

Identifiers

org.eclipse.equinox.common-3.6.0.v20110523.jar

Description: Eclipse org.eclipse.equinox.common project

License:

Eclipse Public License: http://www.eclipse.org/legal/epl-v10.html
File Path: C:\Users\Jeremy\.m2\repository\org\jibx\config\3rdparty\org\eclipse\org.eclipse.equinox.common\3.6.0.v20110523\org.eclipse.equinox.common-3.6.0.v20110523.jar
MD5: A27C25EF3A012911607EFD449183199F
SHA1: AB81FD273D933406A855D23A3C341B668B2F9CEF

Identifiers

org.eclipse.text-3.5.100.v20110505-0800.jar

Description: Eclipse org.eclipse.text project

License:

Eclipse Public License: http://www.eclipse.org/legal/epl-v10.html
File Path: C:\Users\Jeremy\.m2\repository\org\jibx\config\3rdparty\org\eclipse\org.eclipse.text\3.5.100.v20110505-0800\org.eclipse.text-3.5.100.v20110505-0800.jar
MD5: 716A66B8AAF1882BADD4C2F9ACF3FB3E
SHA1: 3DC1F98D887201BB243136F81B2C641C1AE442E9

Identifiers

json-20090211.jar

Description:  JSON (JavaScript Object Notation) is a lightweight data-interchange format. It is easy for humans to read and write. It is easy for machines to parse and generate. It is based on a subset of the JavaScript Programming Language, Standard ECMA-262 3rd Edition - December 1999. JSON is a text format that is completely language independent but uses conventions that are familiar to programmers of the C-family of languages, including C, C++, C#, Java, JavaScript, Perl, Python, and many others. These properties make JSON an ideal data-interchange language.

License:

provided without support or warranty: http://www.json.org/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\json\json\20090211\json-20090211.jar
MD5: 333139FFFC6C9D4BC3D2495D9613F092
SHA1: C183AA3A2A6250293808BBA12262C8920CE5A51C

Identifiers

jsoup-1.7.2.jar

Description: jsoup HTML parser

License:

The MIT License: http://jsoup.com/license
File Path: C:\Users\Jeremy\.m2\repository\org\jsoup\jsoup\1.7.2\jsoup-1.7.2.jar
MD5: 06CCA626F92FCA16F8D2DD9994FF9AB0
SHA1: D7E275BA05AA380CA254F72D0C0FFEBAEDC3ADCF

Identifiers

jetty-6.1.25.jar

Description: Jetty server core

License:

http://www.apache.org/licenses/LICENSE-2.0, http://www.eclipse.org/org/documents/epl-v10.php
File Path: C:\Users\Jeremy\.m2\repository\org\mortbay\jetty\jetty\6.1.25\jetty-6.1.25.jar
MD5: BFE558D6774E672AA7C57AC8DB607538
SHA1: B242826712E0E5146BF57F07394691CF8CB5F5CD

Identifiers

  • cpe: cpe:/a:jetty:jetty:6.1.25   Confidence:LOW   
  • cpe: cpe:/a:mortbay:jetty:6.1.25   Confidence:LOW   
  • cpe: cpe:/a:mortbay_jetty:jetty:6.1.25   Confidence:LOW   
  • maven: org.mortbay.jetty:jetty:6.1.25   Confidence:HIGHEST

CVE-2011-4461  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-310 Cryptographic Issues

Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

Vulnerable Software & Versions: (show all)

CVE-2009-1523  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Directory traversal vulnerability in the HTTP server in Mort Bay Jetty 5.1.14, 6.x before 6.1.17, and 7.x through 7.0.0.M2 allows remote attackers to access arbitrary files via directory traversal sequences in the URI.

Vulnerable Software & Versions: (show all)

servlet-api-2.5-20081211.jar

Description: Servlet Specification API

License:

http://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\org\mortbay\jetty\servlet-api\2.5-20081211\servlet-api-2.5-20081211.jar
MD5: 083898D794CC261853922CA941AEE390
SHA1: 22BFF70037E1E6FA7E6413149489552EE2064702

Identifiers

CVE-2007-5615  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-94 Improper Control of Generation of Code ('Code Injection')

CRLF injection vulnerability in Mortbay Jetty before 6.1.6rc0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

Vulnerable Software & Versions:

rhino-1.7R4.jar

Description: Rhino is an open-source implementation of JavaScript written entirely in Java. It is typically embedded into Java applications to provide scripting to end users.

License:

Mozilla Public License, Version 2.0: http://www.mozilla.org/MPL/2.0/index.txt
File Path: C:\Users\Jeremy\.m2\repository\org\mozilla\rhino\1.7R4\rhino-1.7R4.jar
MD5: 3850097FB5C9AA1065CC198F1B82DCF1
SHA1: E982F2136574B9A423186FBAEAAA98DC3E5A5288

Identifiers

cvsclient-20060125.jar

File Path: C:\Users\Jeremy\.m2\repository\org\netbeans\lib\cvsclient\20060125\cvsclient-20060125.jar
MD5: D37C0E11F9B2D3FDDE5A999BA9418ABB
SHA1: CC80BD0085C79BE7ED332CBDC1DB77498BFF1FDA

Identifiers

asm-all-4.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-all\4.0\asm-all-4.0.jar
MD5: 5B47D1BC9BDFE9ACDBD1109960E3284B
SHA1: 2518725354C7A6A491A323249B9E86846B00DF09

Identifiers

asm-analysis-4.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-analysis\4.1\asm-analysis-4.1.jar
MD5: 3D381440395AE8C4B25D759C286E5743
SHA1: 73401033069E4714F57B60AEAE02F97210AAA64E

Identifiers

asm-debug-all-5.0.2.jar

File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-debug-all\5.0.2\asm-debug-all-5.0.2.jar
MD5: 2C7F3426D91C6E2008542F86E52C5D26
SHA1: 5742EAA4EB2F0583B642EB2A2A7597C996139103

Identifiers

asm-tree-4.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-tree\4.1\asm-tree-4.1.jar
MD5: 84B820D478240EDAD27F2B3D3AF229C6
SHA1: 51085ABCC4CB6C6E1CB5551E6F999EB8E31C5B2D

Identifiers

asm-util-4.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-util\4.1\asm-util-4.1.jar
MD5: 552C18B83A11DC7EC246E4762E6F1F84
SHA1: 6344065CB0F94E2B930A95E6656E040EBC11DF08

Identifiers

asm-5.0.3.jar

File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm\5.0.3\asm-5.0.3.jar
MD5: CCEBEE99FB8CDD50E1967680A2EAC0BA
SHA1: DCC2193DB20E19E1FECA8B1240DBBC4E190824FA

Identifiers

parboiled-core-1.1.4.jar

Description: Elegant parsing in Java and Scala - lightweight, easy-to-use, powerful

License:

Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\parboiled\parboiled-core\1.1.4\parboiled-core-1.1.4.jar
MD5: E65FFB04245E4AE93CA0F18C43861E33
SHA1: DFFDC483D52209C5BD7C7F665F985F6368BC3DA7

Identifiers

parboiled-java-1.1.4.jar

Description: Elegant parsing in Java and Scala - lightweight, easy-to-use, powerful

License:

Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\parboiled\parboiled-java\1.1.4\parboiled-java-1.1.4.jar
MD5: ED991F1BC955A1F9A4D3560CD110F284
SHA1: E59A880C51B753D7D25505560CBE256DD8B2C831

Identifiers

pegdown-1.2.1.jar

Description: A Java 1.5+ library providing a clean and lightweight markdown processor

License:

Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\pegdown\pegdown\1.2.1\pegdown-1.2.1.jar
MD5: 345DE6828ACF6A3765B7A93DC65861B2
SHA1: 47689E060D90F90431B5AB2DF911452B93930D8C

Identifiers

lombok-1.14.8.jar

Description: Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!

License:

The MIT License: http://projectlombok.org/LICENSE
File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.14.8\lombok-1.14.8.jar
MD5: 1CBC1782A86F6E2D3B7337B1889CDFE5
SHA1: 8AC073941721E0B521EC8E8BAD088B1E7B8CD332

Identifiers

lombok-1.14.8.jar: WindowsDriveInfo-i386.dll

File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.14.8\lombok-1.14.8.jar\lombok\installer\WindowsDriveInfo-i386.dll
MD5: C4D7064E400A22CC9A59D2D97382B5B8
SHA1: 63AC163436B8400DCC25F7D13E7A86313FD28A98

Identifiers

  • None

lombok-1.14.8.jar: WindowsDriveInfo-x86_64.dll

File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.14.8\lombok-1.14.8.jar\lombok\installer\WindowsDriveInfo-x86_64.dll
MD5: CDF042A66F9681F362C365131E3C38DD
SHA1: A4598A189D82AE291FAEAD4C0EEC6ABF22B256BE

Identifiers

  • None

jcl-over-slf4j-1.7.5.jar

Description: JCL 1.1.1 implemented over SLF4J

File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\jcl-over-slf4j\1.7.5\jcl-over-slf4j-1.7.5.jar
MD5: 4DDE0990B45D1BBBA6EE141DA8FA9C25
SHA1: 0CD5970BD13FA85F7BED41CA606D6DAF7CBF1365

Identifiers

slf4j-api-1.7.6.jar

Description: The slf4j API

File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-api\1.7.6\slf4j-api-1.7.6.jar
MD5: C802B9AD760BC9C605F01FEE07F2CCC5
SHA1: 562424E36DF3D2327E8E9301A76027FCA17D54EA

Identifiers

slf4j-jdk14-1.5.6.jar

Description:  The slf4j JDK14 binding

File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-jdk14\1.5.6\slf4j-jdk14-1.5.6.jar
MD5: BCA9B637BC7D0F99CD1F3DC16CB91039
SHA1: CC383FBD07DD1826BBCBA1B907BBDC0B5BE627F1

Identifiers

slf4j-log4j12-1.5.10.jar

Description:  The slf4j log4j-12 binding

File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-log4j12\1.5.10\slf4j-log4j12-1.5.10.jar
MD5: 352E66E47739F692221C4717353B939E
SHA1: 08274ABBF7065CA15CF877D199A8BF75DBA87F36

Identifiers

slf4j-nop-1.5.3.jar

Description:  The slf4j NOP binding

File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-nop\1.5.3\slf4j-nop-1.5.3.jar
MD5: 16DACC0AB89858EFAFE1CB535D96B682
SHA1: 36A3C886235CDDD05E55A979CEF549196740231A

Identifiers

aether-util-1.7.jar

Description:  A collection of utility classes to ease usage of the repository system.

File Path: C:\Users\Jeremy\.m2\repository\org\sonatype\aether\aether-util\1.7\aether-util-1.7.jar
MD5: DF02504FDF485555FC8BEC459325D4BA
SHA1: 38485C9C086C3C867C2DD5371909337BD056C492

Identifiers

gossip-1.2.jar

Description:  Gossip is a plugin for SLF4j which has simple and flexible configuration.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\sonatype\gossip\gossip\1.2\gossip-1.2.jar
MD5: 61A8A2446ADD93C018EFCEDE8FB732DE
SHA1: 1AFB40ADE8FA768FA32AFC32432BC31B76D896E9

Identifiers

gshell-io-2.4.jar

File Path: C:\Users\Jeremy\.m2\repository\org\sonatype\gshell\gshell-io\2.4\gshell-io-2.4.jar
MD5: AAAB1D8CBD3887A1F5BC602866AD0606
SHA1: 5AFE3385CAB1926CCB38039A2B12E06C658BCBE4

Identifiers

plexus-build-api-0.0.7.jar

File Path: C:\Users\Jeremy\.m2\repository\org\sonatype\plexus\plexus-build-api\0.0.7\plexus-build-api-0.0.7.jar
MD5: 49F0F8C6BDF2687E358870A4FC1559C6
SHA1: E6BA5CD4BFD8DE00235AF936E7F63EB24ED436E6

Identifiers

plexus-cipher-1.4.jar

File Path: C:\Users\Jeremy\.m2\repository\org\sonatype\plexus\plexus-cipher\1.4\plexus-cipher-1.4.jar
MD5: 7B2D6FCF0D5800D5B1CE09D98D98DCAF
SHA1: 50ADE46F23BB38CD984B4EC560C46223432AAC38

Identifiers

plexus-sec-dispatcher-1.4.jar

File Path: C:\Users\Jeremy\.m2\repository\org\sonatype\plexus\plexus-sec-dispatcher\1.4\plexus-sec-dispatcher-1.4.jar
MD5: 0A46E5BC9BC2FBD3B68091066AFF2737
SHA1: 43FDE524E9B94C883727A9FDDB8669181B890EA7

Identifiers

sisu-guice-3.1.0-no_aop.jar

Description: Patched build of Guice: a lightweight dependency injection framework for Java 5 and above

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\sonatype\sisu\sisu-guice\3.1.0\sisu-guice-3.1.0-no_aop.jar
MD5: 19F877AE736FA153A545D0CF801DCEC9
SHA1: 97C87D15D749C86B2BE1B9809B28321A1D926C7F

Identifiers

CVE-2014-1904  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in web/servlet/tags/form/FormTag.java in Spring MVC in Spring Framework 3.0.0 before 3.2.8 and 4.0.0 before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via the requested URI in a default action.

Vulnerable Software & Versions: (show all)

CVE-2014-0054  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-352

The Jaxb2RootElementHttpMessageConverter in Spring MVC in Spring Framework before 3.2.8 and 4.0.0 before 4.0.2 does not disable external entity resolution, which allows remote attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML, aka an XML External Entity (XXE) issue. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4152, CVE-2013-7315, and CVE-2013-6429.

Vulnerable Software & Versions: (show all)

CVE-2013-7315  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-264 Permissions, Privileges, and Access Controls

The Spring MVC in Spring Framework before 3.2.4 and 4.0.0.M1 through 4.0.0.M2 does not disable external entity resolution for the StAX XMLInputFactory, which allows context-dependent attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML with JAXB, aka an XML External Entity (XXE) issue, and a different vulnerability than CVE-2013-4152. NOTE: this issue was SPLIT from CVE-2013-4152 due to different affected versions.

Vulnerable Software & Versions: (show all)

CVE-2013-6429  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-264 Permissions, Privileges, and Access Controls

The SourceHttpMessageConverter in Spring MVC in Spring Framework before 3.2.5 and 4.0.0.M1 through 4.0.0.RC1 does not disable external entity resolution, which allows remote attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML, aka an XML External Entity (XXE) issue, and a different vulnerability than CVE-2013-4152 and CVE-2013-7315.

Vulnerable Software & Versions: (show all)

CVE-2013-4152  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-264 Permissions, Privileges, and Access Controls

The Spring OXM wrapper in Spring Framework before 3.2.4 and 4.0.0.M1, when using the JAXB marshaller, does not disable entity resolution, which allows context-dependent attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via an XML external entity declaration in conjunction with an entity reference in a (1) DOMSource, (2) StAXSource, (3) SAXSource, or (4) StreamSource, aka an XML External Entity (XXE) issue.

Vulnerable Software & Versions: (show all)

model-builder-1.3.jar

File Path: C:\Users\Jeremy\.m2\repository\org\sonatype\spice\model-builder\1.3\model-builder-1.3.jar
MD5: C054D2FA25D462F85DC202317A114224
SHA1: 37534174C8E7332D2FDA4012521ECECE84EC4149

Identifiers

spring-core-3.1.3.RELEASE.jar

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\springframework\spring-core\3.1.3.RELEASE\spring-core-3.1.3.RELEASE.jar
MD5: FBBD71EEF12AE78A24B180698459F106
SHA1: ABAF69158B1F9639ADFBB24B94BBA190A1892F2F

Identifiers

CVE-2014-1904  

Severity: Medium
CVSS Score: 4.3
CWE: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Cross-site scripting (XSS) vulnerability in web/servlet/tags/form/FormTag.java in Spring MVC in Spring Framework 3.0.0 before 3.2.8 and 4.0.0 before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via the requested URI in a default action.

Vulnerable Software & Versions: (show all)

CVE-2014-0054  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-352

The Jaxb2RootElementHttpMessageConverter in Spring MVC in Spring Framework before 3.2.8 and 4.0.0 before 4.0.2 does not disable external entity resolution, which allows remote attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML, aka an XML External Entity (XXE) issue. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4152, CVE-2013-7315, and CVE-2013-6429.

Vulnerable Software & Versions: (show all)

CVE-2013-7315  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-264 Permissions, Privileges, and Access Controls

The Spring MVC in Spring Framework before 3.2.4 and 4.0.0.M1 through 4.0.0.M2 does not disable external entity resolution for the StAX XMLInputFactory, which allows context-dependent attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML with JAXB, aka an XML External Entity (XXE) issue, and a different vulnerability than CVE-2013-4152. NOTE: this issue was SPLIT from CVE-2013-4152 due to different affected versions.

Vulnerable Software & Versions: (show all)

CVE-2013-6429  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-264 Permissions, Privileges, and Access Controls

The SourceHttpMessageConverter in Spring MVC in Spring Framework before 3.2.5 and 4.0.0.M1 through 4.0.0.RC1 does not disable external entity resolution, which allows remote attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML, aka an XML External Entity (XXE) issue, and a different vulnerability than CVE-2013-4152 and CVE-2013-7315.

Vulnerable Software & Versions: (show all)

CVE-2013-4152  

Severity: Medium
CVSS Score: 6.8
CWE: CWE-264 Permissions, Privileges, and Access Controls

The Spring OXM wrapper in Spring Framework before 3.2.4 and 4.0.0.M1, when using the JAXB marshaller, does not disable entity resolution, which allows context-dependent attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via an XML external entity declaration in conjunction with an entity reference in a (1) DOMSource, (2) StAXSource, (3) SAXSource, or (4) StreamSource, aka an XML External Entity (XXE) issue.

Vulnerable Software & Versions: (show all)

sqljet-1.0.4.jar

Description: A pure Java library for managing SQLite databases

File Path: C:\Users\Jeremy\.m2\repository\org\tmatesoft\sqljet\sqljet\1.0.4\sqljet-1.0.4.jar
MD5: 726FDD388C29AB55F8D06ADA70E7CA28
SHA1: E887BD8E02033AFEC7E2C618E44387D84116FD5C

Identifiers

svnkit-1.3.5.jar

Description: A pure Java Subversion library, formerly known as JavaSVN

File Path: C:\Users\Jeremy\.m2\repository\org\tmatesoft\svnkit\svnkit\1.3.5\svnkit-1.3.5.jar
MD5: 7682049ADB3C45416AB950EE0DFB51F2
SHA1: 72AC6E6FB1ADC25BB8AF80F26C309C413453E423

Identifiers

svnkit-1.3.5.jar: template.jar

File Path: C:\Users\Jeremy\.m2\repository\org\tmatesoft\svnkit\svnkit\1.3.5\svnkit-1.3.5.jar\org\tmatesoft\svn\core\io\repository\template.jar
MD5: 7C709F1F7BC761EF0A10B0D51C0CFB7C
SHA1: 2B270A4F68980879CB48D0298CE543067821F390

Identifiers

  • None

trilead-ssh2-build213-svnkit-1.3-patch.jar

Description: A pure Java implementation of the SSH-2 protocol, a successor to Ganymed

File Path: C:\Users\Jeremy\.m2\repository\org\tmatesoft\svnkit\trilead-ssh2\build213-svnkit-1.3-patch\trilead-ssh2-build213-svnkit-1.3-patch.jar
MD5: 424F4FEA00195405C6870D58659546B9
SHA1: 68B82D7246FD90E0FC70BB9C8F10611489BF371A

Identifiers

xz-1.0.jar

Description: XZ data compression

License:

Public Domain
File Path: C:\Users\Jeremy\.m2\repository\org\tukaani\xz\1.0\xz-1.0.jar
MD5: 8C53D7A772F11A88EE95C6ED0C215E49
SHA1: ECFF5CB8B1189514C9D1D8D68EB77AC372E000C9

Identifiers

oro-2.0.8.jar

File Path: C:\Users\Jeremy\.m2\repository\oro\oro\2.0.8\oro-2.0.8.jar
MD5: 42E940D5D2D822F4DC04C65053E630AB
SHA1: 5592374F834645C4AE250F4C9FBB314C9369D698

Identifiers

git-commit-id-plugin-2.1.12.jar

Description:  git-commit-id-plugin is a plugin quite similar to https://fisheye.codehaus.org/browse/mojo/tags/buildnumber-maven-plugin-1.0-beta-4 for example but as buildnumber at the time when I started this plugin only supported CVS and SVN, something had to be done. This plugin makes basic repository information available through maven resources. This can be used to display "what version is this?" or "who has deployed this and when, from which branch?" information at runtime - making it easy to find things like "oh, that isn't deployed yet, I'll test it tomorrow" and making both testers and developers life easier. The data currently exported is like this (that's the end effect from the GitRepositoryState Bean): { "branch" : "testing-maven-git-plugin", "commitTime" : "06.01.1970 @ 16:16:26 CET", "commitId" : "787e39f61f99110e74deed68ab9093088d64b969", "commitUserName" : "Konrad Malawski", "commitUserEmail" : "konrad.malawski@java.pl", "commitMessageFull" : "releasing my fun plugin :-) + fixed some typos + cleaned up directory structure + added license etc", "commitMessageShort" : "releasing my fun plugin :-)", "buildTime" : "06.01.1970 @ 16:17:53 CET", "buildUserName" : "Konrad Malawski", "buildUserEmail" : "konrad.malawski@java.pl" } Note that the data is exported via maven resource filtering and is really easy to use with spring - which I've explained in detail in this readme https://github.com/ktoso/maven-git-commit-id-plugin

License:

GNU Lesser General Public License 3.0: http://www.gnu.org/licenses/lgpl-3.0.txt
File Path: C:\Users\Jeremy\.m2\repository\pl\project13\maven\git-commit-id-plugin\2.1.12\git-commit-id-plugin-2.1.12.jar
MD5: CF200BB2C633F27D8F86F8D61CDFC716
SHA1: A2FE9EF5155FED94CD8DACC91F5F4AFB27F4E8FC

Identifiers

CVE-2010-2542  

Severity: High
CVSS Score: 7.5
CWE: CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

Stack-based buffer overflow in the is_git_directory function in setup.c in Git before 1.7.2.1 allows local users to gain privileges via a long gitdir: field in a .git file in a working copy.

Vulnerable Software & Versions: (show all)

plexus-utils-1.0.2.jar

File Path: C:\Users\Jeremy\.m2\repository\plexus\plexus-utils\1.0.2\plexus-utils-1.0.2.jar
MD5: 1F23429A787DDA24B8A899CF8A27E667
SHA1: DC78334CCDD2FD86580E9EAF0C32A7DB3369BB3B

Identifiers

regexp-1.3.jar

File Path: C:\Users\Jeremy\.m2\repository\regexp\regexp\1.3\regexp-1.3.jar
MD5: 6DCDC325850E40B843CAC2A25FB2121E
SHA1: 973DF2B78B67BCD3144C3DBBB88DA691065A3F8D

Identifiers

js-1.6R7.jar

Description: Rhino: JavaScript for Java

License:

Mozilla Public License version 1.1: http://www.mozilla.org/MPL/MPL-1.1.html
File Path: C:\Users\Jeremy\.m2\repository\rhino\js\1.6R7\js-1.6R7.jar
MD5: 4995CAEE1CF36AF248F15DF2B8EF4341
SHA1: 77E5E566457426095C743BE207CBA53A2391DFFA

Identifiers

sslext-1.2-0.jar

File Path: C:\Users\Jeremy\.m2\repository\sslext\sslext\1.2-0\sslext-1.2-0.jar
MD5: FDA7F2A2F7AC9B017A5DE1A4742753FD
SHA1: C86A7DB4AC0BC450E675F3D44B3D64CDC934361B

Identifiers

CVE-2008-6504  

Severity: Medium
CVSS Score: 5.0
CWE: CWE-20 Improper Input Validation

ParametersInterceptor in OpenSymphony XWork 2.0.x before 2.0.6 and 2.1.x before 2.1.2, as used in Apache Struts and other products, does not properly restrict # (pound sign) references to context objects, which allows remote attackers to execute Object-Graph Navigation Language (OGNL) statements and modify server-side context objects, as demonstrated by use of a \u0023 representation for the # character.

Vulnerable Software & Versions: (show all)

CVE-2006-1548  

Severity: Medium
CVSS Score: 4.3

Cross-site scripting (XSS) vulnerability in (1) LookupDispatchAction and possibly (2) DispatchAction and (3) ActionDispatcher in Apache Software Foundation (ASF) Struts before 1.2.9 allows remote attackers to inject arbitrary web script or HTML via the parameter name, which is not filtered in the resulting error message.

Vulnerable Software & Versions:

CVE-2006-1547  

Severity: High
CVSS Score: 7.8

ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 with BeanUtils 1.7 allows remote attackers to cause a denial of service via a multipart/form-data encoded form with a parameter name that references the public getMultipartRequestHandler method, which provides further access to elements in the CommonsMultipartRequestHandler implementation and BeanUtils.

Vulnerable Software & Versions: (show all)

CVE-2006-1546  

Severity: High
CVSS Score: 7.5

Apache Software Foundation (ASF) Struts before 1.2.9 allows remote attackers to bypass validation via a request with a 'org.apache.struts.taglib.html.Constants.CANCEL' parameter, which causes the action to be canceled but would not be detected from applications that do not use the isCancelled check.

Vulnerable Software & Versions:

stax-api-1.0.1.jar

Description: StAX API is the standard java XML processing API defined by JSR-173

File Path: C:\Users\Jeremy\.m2\repository\stax\stax-api\1.0.1\stax-api-1.0.1.jar
MD5: 7D436A53C64490BEE564C576BABB36B4
SHA1: 49C100CAF72D658ACA8E58BD74A4BA90FA2B0D70

Identifiers

xalan-2.7.0.jar

File Path: C:\Users\Jeremy\.m2\repository\xalan\xalan\2.7.0\xalan-2.7.0.jar
MD5: A018D032C21A873225E702B36B171A10
SHA1: A33C0097F1C70B20FA7DED220EA317EB3500515E

Identifiers

xercesImpl-2.11.0.jar

Description:  Xerces2 is the next generation of high performance, fully compliant XML parsers in the Apache Xerces family. This new version of Xerces introduces the Xerces Native Interface (XNI), a complete framework for building parser components and configurations that is extremely modular and easy to program. The Apache Xerces2 parser is the reference implementation of XNI but other parser components, configurations, and parsers can be written using the Xerces Native Interface. For complete design and implementation documents, refer to the XNI Manual. Xerces2 is a fully conforming XML Schema 1.0 processor. A partial experimental implementation of the XML Schema 1.1 Structures and Datatypes Working Drafts (December 2009) and an experimental implementation of the XML Schema Definition Language (XSD): Component Designators (SCD) Candidate Recommendation (January 2010) are provided for evaluation. For more information, refer to the XML Schema page. Xerces2 also provides a complete implementation of the Document Object Model Level 3 Core and Load/Save W3C Recommendations and provides a complete implementation of the XML Inclusions (XInclude) W3C Recommendation. It also provides support for OASIS XML Catalogs v1.1. Xerces2 is able to parse documents written according to the XML 1.1 Recommendation, except that it does not yet provide an option to enable normalization checking as described in section 2.13 of this specification. It also handles namespaces according to the XML Namespaces 1.1 Recommendation, and will correctly serialize XML 1.1 documents if the DOM level 3 load/save APIs are in use.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\xerces\xercesImpl\2.11.0\xercesImpl-2.11.0.jar
MD5: 43584ADC1F895628055BAD0AA98A1007
SHA1: 9BB329DB1CFC4E22462C9D6B43A8432F5850E92C

Identifiers

xml-apis-1.0.b2.jar

Description: xml-commons provides an Apache-hosted set of DOM, SAX, and JAXP interfaces for use in other xml-based projects. Our hope is that we can standardize on both a common version and packaging scheme for these critical XML standards interfaces to make the lives of both our developers and users easier. The External Components portion of xml-commons contains interfaces that are defined by external standards organizations. For DOM, that's the W3C; for SAX it's David Megginson and sax.sourceforge.net; for JAXP it's Sun.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\xml-apis\xml-apis\1.0.b2\xml-apis-1.0.b2.jar
MD5: 458715C0F7646A56B1C6AD3138098BEB
SHA1: 3136CA936F64C9D68529F048C2618BD356BF85C9

Identifiers

xmlpull-1.1.3.1.jar

File Path: C:\Users\Jeremy\.m2\repository\xmlpull\xmlpull\1.1.3.1\xmlpull-1.1.3.1.jar
MD5: CC57DACC720ECA721A50E78934B822D2
SHA1: 2B8E230D2AB644E4ECAA94DB7CDEDBC40C805DFA

Identifiers

xmlunit-1.5.jar

Description: XMLUnit compares a control XML document to a test document or the result of a transformation, validates documents, and compares the results of XPath expressions.

File Path: C:\Users\Jeremy\.m2\repository\xmlunit\xmlunit\1.5\xmlunit-1.5.jar
MD5: 99F2EB164A7609DA9A77975843B09405
SHA1: 7789CEF5CAFFDECAB50FD6099535AD2BC2E98044

Identifiers

xpp3_min-1.1.4c.jar

Description: MXP1 is a stable XmlPull parsing engine that is based on ideas from XPP and in particular XPP2 but completely revised and rewritten to take the best advantage of latest JIT JVMs such as Hotspot in JDK 1.4+.

File Path: C:\Users\Jeremy\.m2\repository\xpp3\xpp3_min\1.1.4c\xpp3_min-1.1.4c.jar
MD5: DCD95BCB84B09897B2B66D4684C040DA
SHA1: 19D4E90B43059058F6E056F794F0EA4030D60B86

Identifiers



This report contains data retrieved from the National Vulnerability Database.